As a start here it is my proftpd.conf
Code:
ServerName "ftp.foo.cx"
ServerType standalone
ServerIdent off
ServerAdmin gabrix@gabrix.foo.cx
DeferWelcome off
MultilineRFC2228 on
DefaultServer on
ShowSymlinks on
TimeoutNoTransfer 600
TimeoutStalled 600
TimeoutIdle 1200
DisplayLogin welcome.msg
DisplayFirstChdir .message
ListOptions "-l"
DenyFilter \*.*/
#PersistentPasswd off
#TLSEngine on
#Quotas on
#Ratios on
Port 21
MaxInstances 30
User nobody
Group nogroup
Umask 011 011
AllowOverwrite on
DelayEngine on
DefaultRoot ~ftp
UseReverseDNS off
IdentLookups off
PassivePorts 60000 65535
MasqueradeAddress gabrix.foo.cx
RootLogin off
ExtendedLog /var/log/proftpd.log ALL default
###################ANONYMOUS############################
# A basic anonymous configuration, no upload directories.
<Anonymous ~ftp>
User ftp
Group nogroup
UserAlias anonymous ftp
DirFakeUser on ftp
DirFakeGroup on ftp
DirFakeMode 4777
RequireValidShell off
MaxClients 10
DisplayLogin welcome.msg
DisplayFirstChdir .message
# Limit WRITE everywhere in the anonymous chroot
<Directory *>
<Limit WRITE STORE SITE_CHMOD>
DenyAll
</Limit>
</Directory>
# Uncomment this if you're brave.
<Directory incoming/*>
Umask 022 022
<Limit READ>
DenyAll
</Limit>
<Limit STOR MKD XMKD>
AllowAll
</Limit>
</Directory>
# PUB Downloads
<Directory pub/*>
Umask 011
<Limit STOR WRITE>
DenyAll
</Limit>
<Limit READ>
AllowAll
</Limit>
</Directory>
</Anonymous>
Basically i want anonymous foreign ips chrooted in /home/ftp where there is incoming dir only for uploads and none downloads and pub dir only for downloads and none uploads.The strangeness is when i connect with a command line ftp client proftpd allows the login if i use any other ftp client like gftp, windows cuteftp , filezilla ecc. it refuses login as anonymous and as normal user.
this is gftp log:
Quote:
gFTP 2.0.18, Copyright (C) 1998-2003 Brian Masney <masneyb@gftp.org>. If you have any questions, comments, or
suggestions about this program, please feel free to email them to me. You can always find out the latest news about
gFTP from my website at http://www.gftp.org/
gFTP comes with ABSOLUTELY NO WARRANTY; for details, see the COPYING file. This is free software, and you are
welcome to redistribute it under certain conditions; for details, see the COPYING file
Successfully changed local directory to /home/ftp
Looking up ftp.gabrix.foo.cx
Trying www.gabrix.foo.cx:21
Connected to ftp.gabrix.foo.cx:21
220 82.61.84.174 FTP server ready
USER anonymous
331 Anonymous login ok, send your complete email address as your password.
PASS xxxx
230-Welcome to FTP dot GABRIX dot FOO dot CX Just do class A !!!
230-
230-
230 Anonymous access granted, restrictions apply.
SYST
215 UNIX Type: L8
TYPE A
200 Type set to A
PWD
257 "/" is current directory.
Loading directory listing / from server (LC_TIME=en_GB)
PASV
227 Entering Passive Mode (82,61,84,174,250,156).
Cannot create a data connection: Connection refused
Disconnecting from site ftp.gabrix.foo.cx
|
An another weerdness is i'm using directive
Quote:
ExtendedLog /var/log/proftpd.log ALL default
|
for logging but /etc/proftpd.log stays empty one more head scratch ....
Well if anyone wants to give a try can contact me personally on skype at gabx666.
Post here any other question.Thanks !