|
ru.unix.bsd
- RU.UNIX.BSD ------------------------------------------------------------------
From : Lavkin Mihail 2:5020/400 22 Apr 2007 21:58:06
To : All
Subject : проблема с правами proftpd+mysql .ftpaccess
--------------------------------------------------------------------------------
Конфиг:
------------------------------------
ServerType standalone
DefaultServer on
ServerIdent on
Port 21
Umask 022
MaxClients 10 "Sorry, the maximum number of allowed users
are already connected (%m)"
MaxClientsPerHost 10 "Sorry, you may not connect more than one
time. %m allowed users already connected"
MaxLoginAttempts 3
User ftp
Group ftp
SyslogLevel notice
UseReverseDNS off
IdentLookups off
SystemLog /var/log/proftpd/proftpd.log
TransferLog /var/log/proftpd/proftpd-tranfer.log
ExtendedLog /var/log/proftpd/proftpd-extended.log
read,write
ExtendedLog /var/log/proftpd/proftpd-auth.log AUTH auth
LogFormat default "%h %l %u %t \"%r\" %s %b"
LogFormat auth "%v [%P] %h %t \"%r\" %s"
LogFormat write "%h %l %u %t \"%r\" %s %b"
TimeoutIdle 300
TimeoutLogin 300
TimeoutNoTransfer 360
TimeoutStalled 640
DefaultTransferMode binary
AllowForeignAddress off
UseFtpUsers off
PidFile /var/run/proftpd.pid
#DisplayConnect /etc/ftp_connect.msg
#DisplayLogin /etc/ftp_login.msg
AccessDenyMsg "ATTENTION!!! ALL CONNECTIONS LOGED"
AccessGrantMsg "Now upload/download files"
DisplayGoAway "Go Away"
PersistentPasswd off
LoadModule mod_clamav.c
ClamAV off
ClamLocalSocket /var/run/clamav/clamd
#sql info
SQLAuthTypes Plaintext # хранить пароли в открытом
тексте
SQLAuthenticate users groups
SQLConnectInfo proftpd@localhost proftpd propass # база@хост
логин пароль
SQLUserInfo users username password uid gid homedir shell
# данные которые беруться из базы
SQLGroupInfo groups groupname gid members
RequireValidShell off # непроверять валидность шелла
#SQLLogFile /var/log/proftpd/sql.log #нужно только на
время тестирования после закоментить, генерирует много инфы.
# config quotas
# ===========
QuotaEngine on # включить квоту
QuotaDirectoryTally on
QuotaDisplayUnits Mb
QuotaShowQuotas on
SQLNamedQuery get-quota-limit SELECT "name, quota_type, per_session,
limit_type, \
bytes_in_avail, bytes_out_avail, bytes_xfer_avail, files_in_avail,
files_out_avail, \
files_xfer_avail FROM quotalimits WHERE name = '%{0}' AND
quota_type = '%{1}'"
SQLNamedQuery get-quota-tally SELECT "name, quota_type, bytes_in_used,
bytes_out_used, \
bytes_xfer_used, files_in_used, files_out_used, files_xfer_used
FROM quotatallies \
WHERE name = '%{0}' AND quota_type = '%{1}'"
SQLNamedQuery update-quota-tally UPDATE "bytes_in_used = bytes_in_used
+ %{0}, \
bytes_out_used = bytes_out_used + %{1}, bytes_xfer_used =
bytes_xfer_used + %{2}, \
files_in_used = files_in_used + %{3}, files_out_used =
files_out_used + %{4}, \
files_xfer_used = files_xfer_used + %{5} WHERE name = '%{6}' AND
quota_type = '%{7}'" quotatallies
SQLNamedQuery insert-quota-tally INSERT "%{0}, %{1}, %{2}, %{3}, %{4},
%{5}, %{6}, %{7}" quotatallies
QuotaLimitTable sql:/get-quota-limit
QuotaTallyTable sql:/get-quota-tally/update-quota-tally/insert-quota-
tally
SQLNamedQuery gettally SELECT "ROUND((bytes_in_used/1048576),
2) FROM quotatallies WHERE name='%u'"
SQLNamedQuery getlimit SELECT "ROUND((bytes_in_avail/
1048576),2) FROM quotalimits WHERE name='%u'"
SQLNamedQuery getfree SELECT
"ROUND(((quotalimits.bytes_in_avail-quotatallies.bytes_in_used)/
1048576),2) FROM quotalimits,quotatallies WHERE quotata
SQLShowInfo LIST "226" "Used %{gettally}MB from %
{getlimit}MB. You have %{getfree}MB available space."
QuotaLog /var/log/proftpd/quota.log
DefaultRoot /usr/vftp/
<Anonymous /usr/vftp>
User ftp
Group ftp
UserAlias anonymous ftp
SQLEngine off
<Limit WRITE>
DenyAll
</Limit>
<Directory /usr/vftp/private/*>
HideFiles (.)$
</Directory>
</Anonymous>
<Directory /usr/vftp/private/*>
AllowStoreRestart on
AllowOverwrite on
HideFiles (.)$ group Users
<Limit Write>
AllowGroup Admin
DenyAll
</Limit>
<Limit READ>
AllowAll
</Limit>
</Directory>
<Directory /usr/vftp/*>
AllowStoreRestart on
AllowOverwrite on
AllowOverride on
<Limit READ>
AllowAll
</Limit>
<Limit WRITE>
DenyAll
</Limit>
</Directory>
------------------------------
Версия:
------------------------------
ftp# proftpd -V
Compile-time Settings:
Version: 1.3.1rc1
Platform: FREEBSD6 (FREEBSD6_1)
Built With:
configure --with-libraries=/usr/local/lib/mysql/ --with-includes=/
usr/local/include/mysql/ --with-
modules=mod_sql:mod_sql_mysql:mod_quotatab:mod_quotatab_sql --enable-
dso --with-shared=mod_clamav
CFLAGS: -O2 -Wall
LDFLAGS: -L$(top_srcdir)/lib
LIBS: -lsupp -lcrypt -lutil -lm -lmysqlclient -lz -lpam
Files:
Configuration File:
/usr/local/etc/proftpd.conf
Pid File:
/usr/local/var/proftpd.pid
Scoreboard File:
/usr/local/var/proftpd/proftpd.scoreboard
Shared Module Directory:
/usr/local/libexec
Features:
- Autoshadow support
- Controls support
+ curses support
- Developer support
+ DSO support
- IPv6 support
+ Largefile support
- NLS support
- Lastlog support
- NLS support
+ ncurses support
- OpenSSL support
- POSIX ACL support
- Shadow file suppport
+ Sendfile support
+ Trace support
Tunable Options:
PR_TUNABLE_BUFFER_SIZE = 1024
PR_TUNABLE_GLOBBING_MAX = 8
PR_TUNABLE_HASH_TABLE_SIZE = 40
PR_TUNABLE_NEW_POOL_SIZE = 512
PR_TUNABLE_RCVBUFSZ = 65536
PR_TUNABLE_SCOREBOARD_BUFFER_SIZE = 80
PR_TUNABLE_SCOREBOARD_SCRUB_TIMER = 30
PR_TUNABLE_SELECT_TIMEOUT = 30
PR_TUNABLE_SNDBUFSZ = 32768
PR_TUNABLE_TIMEOUTIDENT = 10
PR_TUNABLE_TIMEOUTIDLE = 600
PR_TUNABLE_TIMEOUTLINGER = 180
PR_TUNABLE_TIMEOUTLOGIN = 300
PR_TUNABLE_TIMEOUTNOXFER = 300
PR_TUNABLE_TIMEOUTSTALLED = 3600
PR_TUNABLE_XFER_BUFFER_SIZE = 32768
PR_TUNABLE_XFER_SCOREBOARD_UPDATES = 10
------------------------------
в дире /usr/vftp/public/test/ лежит .ftpaccess
------------------------------
<Limit WRITE>
AllowUser test
</Limit>
------------------------------
Пользователь test в диру писать не может, в принципе туда никто писать
не может.
в логе
UNKNOWN test [20/Apr/2007:14:10:15 +0400] "STOR /public/test/Far.ico"
550 -
подскажите куда копать :/
--- ifmail v.2.15dev5.3
* Origin: http://groups.google.com (2:5020/400)
Вернуться к списку тем, сортированных по: возрастание даты уменьшение даты тема автор
|
