1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
|
#----------------------------------------------------------
# This is the main server configuration
[section] main
# allow connections from port 21
ftpport 21
# set maximum users to 200
maxusers 200
# log everything execpt debugging logs
logstrength 63
# set logfile
logfile /var/log/muddleftpd.log
# set default timeout to 300 seconds
timeout 300
# set the file displayed on login
logindump /etc/issue.ftp
# allow anyhost to connect
ipacl A:*
# set admin email address
email user@hostname
# set groups to run through. one group is to catch invalid usernames
# like root and uucp. The next catches anonymous users, the last one
# for normal users
group badusers
group anonymous
group localusers
# set scratchfile for inetd operation
scratchfile /var/lock/muddleftpd.scratch
# set hostname to something reasonable
hostname testserver
# set the greeting
greeting Welcome. Enter a username. Use 'anonymous' to access software archive.
#----------------------------------------------------------
# This configures badusers. It catches any bad usernames that
# should not be logged into
[section] badusers
# tell it to accept the usernames root, uucp and news
nameacl A:root
nameacl A:uucp
nameacl A:news
# accept these usernames from any host.
ipacl A:*
# tell the server these usernames are disabled
authmethod disabled
# set the maxuser count of this group to 0 so it isn't
# added to the stats
maxusers 0
#----------------------------------------------------------
# This configures the anonymous user.
# Note: if the following doesn't work, then your computer
# needs the ftp user to be set.
[section] anonymous
# tell the group that is can accept any host
ipacl A:*
# tell the server to accept anonymous or ftp for this group
nameacl A:anonymous
nameacl A:ftp
# tell the server to use chroot to the anonymous rootdir
chroot 1
# tell the server to use the ftp user as the anonymous rootdir
# and uid/gid
authparams ftp
# tell the server to use the anonymous authenticator, and
# accept any password.
authmethod anonymous
# disallow any changes to file permissions or upload umask
chmoding 0
# print out this file when the user logs in. It is not relative
# to anonymous's rootdir
welcome /home/ftp/welcome.msg
# display this file when a user changes into a new directory
cddump .message
# display this file when too many users are logged on
busydump /etc/msgs/msg.toomany
# set the umask files are uploaded with
umask 077
# give anonymous user read/list access everywhere and add/list access
# to the incoming folder. The / on the end of the second directive
# tells muddleftpd to apply ACL to a directory rather than a file.
access /:RLC
# uncomment this line to enable upload area. Can only add files.
# access /incoming/:ALC
# limit the size of this group so localusers can log in too
maxusers 100
# set the niceness of anonymous users to 10
nice 10
#----------------------------------------------------------
# This configures the normal users.
[section] localusers
# tell the group that it can accept any host that the last group
# didn't get
ipacl A:*
# tell the server to accept any username for this group
nameacl A:*
# tell the server to use chroot to the user's rootdir
chroot 1
# set the users rootdir to their homedir, to lock them in there
rootdir %h
# set the users homedir to /, so he ends up in his own homedir
homedir /
# tell the server to use the unix authenticator, useful against
# normal password files
authmethod unix
# give normal users full access to their userspace
access /:ALL
# allow server-server transfers with localusers
fxpallow 1
|
