I have been hitting my head against this issue for two days now, so any help would be fantastic.
I’ve compiled vsftpd from source with SSL support and installed it on my Debian Wheezy box. I’ve configured vsftpd to use SSL and set up a password file for virtual users. The problem is, vsftpd doesn’t seem to be taking any notice of this file, and is just allowing local logon from6 the users in /etc/passwd. By running "ldd vsftpd” I have confirmed that vsftpd isn’t linked to PAM.
Is there any way to get vsftpd to link to PAM? I’m still learning (aren’t we all?), and while I know that ldd lists shared library dependencies for a program, I don’t know if said dependencies can be set or if I need to recompile vsftpd with more options or what.
Oh, and if I install the repo version of the server (which is rather old), it does link with PAM, but SSL spits out tons of errors for the FileZilla client, so I can’t use it.
Here are all my confs and settings:
/etc/vsftpd.conf
Code:
listen=YES
ssl_enable=YES
ssl_sslv3=YES
ssl_tlsv1=YES
implicit_ssl=YES
ssl_ciphers=HIGH
allow_anon_ssl=YES
force_anon_data_ssl=YES
force_anon_logins_ssl=YES
debug_ssl=YES
require_ssl_reuse=NO
rsa_cert_file=/etc/vsftpd/vsftpd.pem
pam_service_name=vsftpd
virtual_use_local_privs=YES
anon_upload_enable=YES
anonymous_enable=NO
chroot_local_user=YES
connect_from_port_20=YES
dirmessage_enable=YES
dual_log_enable=YES
force_dot_files=NO
guest_enable=YES
hide_ids=YES
local_enable=YES
pasv_addr_resolve=YES
write_enable=YES
xferlog_enable=YES
data_connection_timeout=120
listen_port=40031
local_umask=0666
max_clients=6
max_per_ip=2
pasv_max_port=40040
pasv_min_port=40032
ftpd_banner=Welcome to the FTP
guest_username=ftp
local_root=/mnt/Data/FTP/$USER
nopriv_user=ftp
pasv_address=mydomain.dnsd.me
user_sub_token=$USER
/etc/pam.d/vsftpd
Code:
auth required pam_pwdfile.so pwdfile /etc/ftpd.passwd
account required pam_permit.so
/etc/ftpd.passwd
Code:
curtains:hNAyuhk9d8U2I
