proFTPD configuration help please
I am trying to setup proftpd on my apache server. The scenario is this:
1-I need to access only the /var/www/http directory which houses multiple websites in subdirectories
2-only one user needs access via ftp to manage all sites in this directory
3-absolutely no anonymous access
I have read all I can find on the fttpd.conf configuration but I am still missing something. When I try to access the server I get this error-
> proftpd
- no such group 'nogroup'
- Fatal: Group: Unknown group 'nogroup'.
I guess I dont understand what the nobody user and nogroup are. That is the default in the .conf file so I left it alone because I dont know any better. I only have one user set up on this machine besides root. That is the user that will need the ftp access. I dont know what his group is, im new to Linux but the user was setup during install of RH7.3 when it askes if you want to set up additional users. Also, I added "ftp" to the /etc/ftpusers file as my understanding is that will kill any annonymous access. Do I understand correctly? My proftpd.conf file is below.
# This is a basic ProFTPD configuration file.
# It establishes a single server and a single anonymous login.
# It assumes that you have a user/group "nobody" and "ftp"
# for normal/anonymous operation.
#ServerName "ProFTPD on Apache2"
#RootLogin on
ServerType standalone
#ServerType inetd
DefaultServer on
#DefaultRoot ~
DefaultRoot /var/www/html
# Port 21 is the standard FTP port.
Port 21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022
# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances 10
# Set the user and group that the server normally runs at.
User nobody
Group nogroup
# This next option is required for NIS or NIS+ to work properly:
#PersistentPasswd off
SystemLog /var/log/proftpd.log
TransferLog /var/log/xferlog
# Normally, we want files to be overwriteable.
<Directory /*>
AllowOverwrite on
</Directory>
# A basic anonymous FTP server configuration.
# To enable this, remove the user ftp from /etc/ftpusers.
<Anonymous ~ftp>
RequireValidShell off
User ftp
Group ftp
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous ftp
# Limit the maximum number of anonymous logins
MaxClients 50
# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message
# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
</Limit>
# An upload directory that allows storing files but not retrieving
# or creating directories.
# <Directory incoming/*>
# <Limit READ>
# DenyAll
# </Limit>
#
# <Limit STOR>
# AllowAll
# </Limit>
# </Directory>
</Anonymous>
|