Proftpd

Jeff plug-discuss@lists.PLUG.phoenix.az.us
Fri, 09 Nov 2001 07:52:47 -0700 

For some reason, the logins weren't working, so I recompiled and reinstalled it and login works the way I would like now.

The only thing I need to do now, is to figure out the eth0 and eth1 thing if it can be done.


At 07:45 AM 11/9/2001, you wrote:
>On Tue, Nov 06, 2001 at 08:35:31AM -0700, Jeff wrote:
>> Ok, Here is my problem:
>> 
>> Again it's a problem finding a good HOWTO.  All the howtos and readmes on
>> proftp tell me pretty good how to set up an anonymous account, however, I
>> don't want an anonymous account setup.  I want myself, and anyone who I feel
>> worthy, to be able to log in with a username and password of their choice
>> (following good linux password rules)
>> 
>> My problem seems to be with configuring a correct proftpd.conf file.
>> 
>> I would like the logins to have as high of security as possible without
>> downloading and installing and configuring excess packages.
>> 
>> The accounts don't necessarily have to have a shell account to log in, and
>> I'd like all the logins to have the same folder tree. However, occasionally,
>> I may want to make a diff folder for a new login account.
>
>That's all handled via the passwd file by default (you can change the
>user database to anything ranging from an SQL database to a simple
>plain-text file with plugins) --  shells, home directories, etc.
>Whenever someone logs into an existing account, ProFTPD (by default) changes
>to the home directory listed in /etc/passwd automaticially. Note, however,
>that it does _not_ chroot() to the directory by default -- that has to be
>explicitly asked for. Also, if the RequireValidShell variable is set to on,
>all of the users that you want to use ftp _must_ have a valid shell that is
>listed in /etc/shells.
>
>> I was also wondering, if it's possible to setup different accounts for
>> each Ethernet interface.  Say a highly secure login for myself from eth0 and
>> a simple anon login if you are coming from eth1.
>
>Possibly, but I'm unsure. You could try doing it as a pair of virtual
>servers -- one bound to the eth0 interface, the other bound to eth1. 
>
>> I don't know if that's possible or not.
>> 
>> Anyhow, Where can you point me?
>
>Pull down the Proftp source, and read the proftpd/doc/Configuration.html
>file, or look for online documentation at the website.
>
>-- 
>Thomas "Mondoshawan" Tate
>phoenix@psy.ed.asu.edu
>http://tank.dyndns.org

~Jeff

Slackware 8.0
Linux 2.4.5