proftpd.conf配置指令手册(中文)

  proftpd

Limit

proftpd.conf配置指令手册(中文) – 查看主题 • Ubuntu中文论坛.

AccessDenyMsg — 访问拒绝的信息提示(530)。
语法:AccessDenyMsg [“messge”]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
范例:AccessDenyMsg "用户%u访问被拒绝!"
——————————————————————–
AccessGrantMsg — 访问拒绝的信息提示(230)。
语法:AccessGrantMsg [“messge”]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
范例:AccessGrantMsg "用户%u成功登陆!"
——————————————————————–
Allow — 使用网络号、主机、域名控制允许访问
语法:Allow [ [“from”] “all”|”none”|host|network[,host|network[,…]]]
默认:Allow from all
语境:<Limit>
范例:
<Limit LOGIN>
Order allow,deny
Allow from 128.44.26.,myhost.mydomain.edu,.trusted-domain.org
Deny from all
</Limit>
——————————————————————–
AllowAll — 所有客户端允许访问
语法:AllowAll
语境:<Directory>, <Anonymous>, <Limit>, .ftpaccess
模块:mod_auth
范例:
<Limit RETR>
AllowAll
</Limit>
——————————————————————–
AllowClass — 使用类控制允许访问
语法:AllowClass [[“AND”|”OR”|”regex”] class-expression]
语境:<Limit>
范例:
<Class internal>
From 192.168.0.0/24
</Class>
<Limit LOGIN>
AllowClass internal
</Limit>
——————————————————————–
AllowFilter — 以正则表达式匹配所有发送到proftpd的命令,匹配失败则会禁止此命令。
语法:AllowFilter [regular-expression]
语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directoryl>, .ftpaccess
范例:AllowFilter "^[a-zA-Z0-9 ,]*$"
——————————————————————–
AllowForeignAddress — 控制客户端使用 PORT 模式(主动)
语法:AllowForeignAddress [on|off]
默认:AllowForeignAddress off
语境:server config, <VirtualHost>, <Anonymous>, <Global>
——————————————————————–
AllowGroup — 使用用户组控制允许访问
语法:AllowGroup [[“AND”|”OR”|”regex”] group-expression]
语境:<Limit>
范例:AllowGroup OR www,doc
——————————————————————–
AllowLogSymlinks — 允许符号链接
语法:AllowLogSymlinks [“on”|”off”]
默认:AllowLogSymlinks off
语境:server config, <VirtualHost>, <Global>
——————————————————————–
AllowOverride — 控制那些.ftpaccess文件将解析
语法:AllowOverride [on|off [“user”|”group”|”class” expression]]
默认:AllowOverride on
语境:server config, <Global>, <VirtualHost>, <Anonymous>
——————————————————————–
AllowOverwrite — 控制能否覆盖现有的文件
语法:AllowOverwrite [on|off]
默认:AllowOverwrite off
语境:server config, <VirtualHost>, <Anonymous>, <Directory>, <Global>, .ftpaccess
模块:mod_xfer
范例:AllowOverwrite on
——————————————————————–
AllowRetrieveRestart — 允许客户机恢复下载
语法:AllowRetrieveRestart [on|off]
默认:AllowRetrieveRestart on
语境:server config, <VirtualHost>, <Anonymous>, <Directory>, <Global>, .ftpaccess
——————————————————————–
AllowStoreRestart — 允许客户机恢复上传(续传)
语法:AllowStoreRestart [on|off]
默认:AllowStoreRestart off
语境:server config, <VirtualHost>, <Anonymous>, <Directory>, <Global>, .ftpaccess
——————————————————————–
AllowUser — 使用用户控制允许访问
语法:AllowUser [[“AND”|”OR”|”regex”] user-expression]
语境:<Limit>
范例:AllowUser regex ^ftp
——————————————————————–
AnonRatio — 使用匿名用户的密码匹配设置上传下载比(通常密码是邮箱)
语法:AnonRatio [AnonPWD fileratio filequota byteratio bytequota]
AnonPWD:就是登入 proftpd 的匿名用户的密码
fileratio :这个是以档案为基准的『比例』,通常不限制,故为 0
filequota :预设能够下载多少档案,不限制时为 0
byteratio :就是上传/下载的比例,这个数字代表『1:下载』之意!
bytequota :预设能够下载多少 KBytes 的档案!注意单位喔!
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
范例:AnonRatio guest@itwhy.org 0 0 -2 0
——————————————————————–
AnonRejectPasswords — 屏蔽某些匿名用户的密码
语法:AnonRejectePasswords [regex]
语境:<Anonymous>
模块:mod_auth
范例:AnonRejectPasswords @evil\.org$
——————————————————————–
AnonRequirePassword — 使匿名用户提供一个有效的密码
语法:AnonRequirePassword [ on|off]
默认:AnonRequirePassword off
语境:<Anonymous>
模块:mod_auth
——————————————————————–
Anonymous — 定义一个匿名服务
语法:Anonymous [root-directory]
语境:server config,<VirtualHost>, <Global>
范例:
<Anonymous /home/ftp>
<Directory *>
<Limit WRITE>
DenyALL
</Limit>
</Directory>
</Anonymous>
——————————————————————–
AnonymousGroup — 使组成员都成为匿名用户
语法:AnonymousGroup [group]
语境:server config, <VirtualHost>, <Global>
范例:AnonymousGroup www
——————————————————————–
AuthAliasOnly — 只允许别名登陆,不允许真实用户登陆
语法:AuthAliasOnly [on|off]
默认:server config, <VirtualHost>, <Anonymous>, <Global>
语境:mod_auth
——————————————————————–
AuthGroupFile — 使用用户组数据文件替代系统组
语法:AuthGroupFile [path]
语境:server config, <VirtualHost>, <Global>
模块:mod_auth_file
范例:AuthGroupFile /usr/local/proftpd/etc/itwhy.ftpd.group
——————————————————————–
AuthOrder — 配置模块检查顺序
语法:AuthOrder [module-name…]
语境:server config, <VirtualHost>, <Global>
范例:AuthOrder mod_sql.c mod_ldap.c
——————————————————————–
AuthPAM — 启用/禁用 PAM 认证
语法:AuthPAM [on|off]
默认:AuthPAM on
语境:server config,<VirtualHost>, <Global>
模块:mod_auth_pam
——————————————————————–
AuthPAMConfig — PAM 服务名称
语法:AuthPAMConfig [service]
默认:AuthPAMConfig ftp
语境:server config,<VirtualHost>, <Global>
模块:mod_auth_pam
范例:AuthPAMConfig itwhy_ftp
——————————————————————–
AuthUserFile — 使用用户数据文件替代系统用户
语法:AuthUserFile [path]
语境:server config,<VirtualHost>, <Global>
模块:mod_auth_file
范例:AuthGroupFile /usr/local/proftpd/etc/itwhy.ftpd.user
——————————————————————–
AuthUsingAlias — 通过别名认证代替映射的用户名
语法:AuthUsingAlias [on|off]
默认:AuthUsingAlias off
语境:<Anonymous>
模块:mod_auth
——————————————————————–
Bind — <已废弃>
——————————————————————–
ByteRatioErrMsg — ByteRatio限制超过提示信息。
语法:ByteRatioErrMsg [“messge”]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
范例:ByteRatioErrMsg "ByteRatio limit exceeded, upload something first…"
——————————————————————–
CapabilitiesEngine — 启用/禁用mod_cap模块
语法:CapabilitiesEngine [on/off]
语境:server config, <VirtualHost>, <Global>
模块:mod_cap
——————————————————————–
CapabilitiesSet — mod_cap的能力操纵
语法:CapabilitiesSet [[+/-]capability…]
语境:server config, <VirtualHost>, <Global>
模块:mod_cap
范例:
<IfModule mod_cap.c>
CapabilitiesEngine on
CapabilitiesSet -CAP_CHOWN +CAP_DAC_READ_SEARCH +CAP_FOWNER
</IfModule>
——————————————————————–
CDPath — 定义使用 cd 命令改变目录时使用的搜索路径
语法:CDPath [directory]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
范例:CDPath /home/public
CDPath /var/devel
用户使用cd命令改变目录时,会依次搜寻/home/public和/var/devel,只要有相应的权限。
——————————————————————–
Class — 定义一个客户端连接类
语法:VirtualHost []
语境:server config
范例:见AllowClass指令
——————————————————————–
CommandBufferSize — 限制最大的命令的长度
语法:CommandBufferSize [size]
默认:CommandBufferSize 512
语境:server config, <VirtualHost>, <Global>
——————————————————————–
CreateHome — 如果主目录不存在,则创建它
语法:CreateHome [off|on [] [skel ] [dirmode ]]
语境:server config, <VirtualHost>, <Global>
模块:mod_auth
范例:CreateHome on skel /etc/ftpd/skel dirmode 700
——————————————————————–
CwdRatioMsg — Ratio模块的指令
语法:CwdRatioMsg [“messge”]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
范例:CwdRatioMsg "Please upload first!"
——————————————————————–
DebugLevel — 设置调试级别
语法:DebugLevel [0-9]
默认:DebugLevel 0
语境:server config, <VirtualHost>, <Global>
——————————————————————–
DefaultAddress — 设置服务器默认监听IP址
语法:DefaultAddress [dns-names|ip-addresses seperated with spaces]
语境:server config
范例:DefaultAddress 192.168.10.30 my.domain.tld
——————————————————————–
DefaultChdir — 设置会话开始目录
语法:DefaultChdir [directory [group-expression]]
默认:DefaultChdir ~
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
——————————————————————–
DefaultRoot — 改变用户根目录,使用户监禁在此目录中
语法:DefaultRoot [directory [group-expression]]
默认:DefaultRoot /
语境:server config, <VirtualHost>, <Global>
模块:mod_auth
范例:DefaultRoot ~ users,!admin
——————————————————————–
DefaultServer — 设置默认的服务
语法:DefaultServer [on|off]
语境:server config,<VirtualHost>
——————————————————————–
DefaultTransferMode — 设置默认的数据传输方式
语法:DefaultTransferMode [ascii|binary]
默认:DefaultTransferMode ascii
语境:server config, <VirtualHost>, <Global>
——————————————————————–
DeferWelcome — 不显示欢迎信息,直到用户验证
语法:DeferWelcome [on|off]
默认:DeferWelcome off
语境:server config, <VirtualHost>, <Global>
——————————————————————–
Define — Initialises定义为IfDefine
语法:Define [parameter-name]
语境:any context
范例:IfDefine LoadLimiting
——————————————————————–
DelayEngine — 使用mod_delay模块
语法:DelayEngine [on|off]
默认:DelayEngine on
语境:server config
模块:mod_delay
范例:
<IfModule mod_delay.c>
DelayEngine off
</IfModule>
——————————————————————–
DelayTable — 指令存储时间数据文件
语法:DelayTable [path]
默认:DelayTable var/proftpd/proftpd.delay
语境:server config
模块:mod_delay
——————————————————————–
DeleteAbortedStores — 删除除未完全上传的文件
语法:DeleteAbortedStores [on|off]
默认:DeleteAbortedStores off
语境:server, <VirtualHost>, <Directory>, <Anonymous>, <Global>, .ftpaccess
模块:mod_xfer
——————————————————————–
Deny — 与 Allow 指令相反
——————————————————————–
DenyAll — 与 AllowAll 指令相反
——————————————————————–
DenyClass — 与 AllowClass 指令相反
——————————————————————–
DenyFilter — 与 AllowFilter 指令相反<PASV模式下无效>
——————————————————————–
DenyGroup — 与 AllowGroup 指令相反
——————————————————————–
DenyUser — 与 AllowUser 指令相反
——————————————————————–
Directory — 目录限制配置指令
语法:[]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
范例:
<Directory ~/anon-ftp>
<Limit WRITE>
DenyAll
</Limit>
</Directory>
——————————————————————–
DirFakeGroup — 掩饰真正的文件所属组
语法:DirFakeGroup [On|Off [groupname]]
默认:DirFakeGroup Off
语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directory>, .ftpaccess
模块:mod_ls
范例:DirFakeGroup On ftp
——————————————————————–
DirFakeMode — 掩饰真实文件的权限
语法:DirFakeMode [octal-mode]
语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directory>
模块:mod_ls
范例:DirFakeMode 0640
——————————————————————–
DirFakeUser — 掩饰真正的文件所属用户
语法:DirFakeUser [On|Off [username]]
默认:DirFakeUser Off
语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directory>, .ftpaccess
模块:mod_ls
——————————————————————–
DisplayChdir — 设置改变目录时显示的文件
语法:DisplayChdir [filename [true]]
语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory>
范例:DisplayChdir /home/ftp/.DisplayChdir true
——————————————————————–
DisplayConnect — 设置用户连接时显示的文件
语法:DisplayConnect [filename]
语境:server config, <VirtualHost>, <Global>
——————————————————————–
DisplayFileTransfer — 设置文件转移时显示的文件(上传或下载)
语法:DisplayFileTransfer [“name” limit|regex|ip value]
语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Limit>, .ftpaccess
模块:mod_xfer
——————————————————————–
DisplayFirstChdir — 设置当第一次进入一个目录时显示的文件<已废弃>
——————————————————————–
DisplayGoAway — 设置最大连接数达到上限被拒绝时显示的文件
语法:DisplayGoAway [filename]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
——————————————————————–
DisplayLogin — 设置用户成功登陆时显示的文件
语法:DisplayLogin [filename]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
——————————————————————–
DisplayQuit — 设置用户退出时显示的文件
语法:DisplayQuit [filename]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
——————————————————————–
DisplayReadme — 显示指令文件的修改时间
语法:DisplayReadme [filename or pattern]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_readme
范例:DisplayReadme README*
——————————————————————–
ExtendedLog — 定制log文件
语法:ExtendedLog [filename [[command-classes] format-nickname]]
语境:server config, <VirtualHost>, <Anonymous> <Global>
模块:mod_log
范例:ExtendedLog /var/log/ftp.log read,write
——————————————————————–
FileRatioErrMsg — 文件超过限制显示的信息
语法:FileRatioErrMsg [“messge”]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
范例:FileRatioErrMsg "FileRatio limit exceeded, upload something first…"
——————————————————————–
Global — 全局设置指令
语法:<Global>
语境:server config, <VirtualHost>
——————————————————————–
Group — 设置proftpd进程所属组
语法:Group [Group groupid]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
范例:Group:nogroup
——————————————————————–
GroupOwner — 设置新文件的缺省组
语法:GroupOwner [GroupOwner groupname]
语境:<Anonymous>, <Directory>, .ftpaccess
范例:GroupOwner nogroup
——————————————————————–
GroupPassword — 设置群组密码,允许组成员使用单一的密码
语法:GroupPassword [GroupPassword groupid hashed-password]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
范例:GroupPassword http://www.itwhy.org 500
——————————————————————–
GroupRatio — 使用用户组匹配设置上传下载比
语法:GroupRatio [group fileratio filequota byteratio bytequota]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
范例:GroupRatio www 0 0 2 0
——————————————————————–
HiddenStor — 开启安全上传<已废弃>
——————————————————————–
HiddenStores — 开启安全上传(HiddenStor的延续)
语法:HiddenStor [on|off]
默认:HiddenStor off
语境:<Directory>, <Anonymous>, <VirtualHost>, <Global>
模块:mod_xfer
范例:<这个指令不能和AllowStoreRestart指令同时开启>
——————————————————————–
HideFiles — 隐藏指令的文件
语法:HideFiles [[!]regexp|”none” [“user”|”group”|”class” expression]]
语境:<Directory>, .ftpaccess
范例:HideFiles !(\.htm|\.html)$ group webmaster
——————————————————————–
HideGroup — 针对用户组隐藏文件
语法:HideGroup [groupid]
语境:<Directory>, <Anonymous>
范例:HideGroup 500
——————————————————————–
HideNoAccess — 针对户没有此目录权限
语法:HideNoAccess [on|off]
语境:<Directory>,<Anonymous>
——————————————————————–
HideUser — 使用用户隐藏文件
语法:HideUser [userid]
语境:<Directory>, <Anonymous>
——————————————————————–
HostRatio — 使用主机匹配设置上传下载比
语法:GroupRatio [host fileratio filequota byteratio bytequota]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
——————————————————————–
IdentLookups — 通过RFC1413调用捕获客户机用户的UID
语法:IdentLookups [on|off]
默认:IdentLookups on
语境:server config, <VirtualHost>, <Global>
——————————————————————–
IfDefine -有条件地跳过或处理文件中部分命令
语法:IfDefine [[!]define-label]
语境:any
范例:
<IfDefine USE_SQL>
LoadModule mod_sql.c
LoadModule mod_sql_mysql.c
</IfDefine>
——————————————————————–
IfModule — 解析一段基于模块的指定
语法:IfModule [[!]module-name]
语境:any
范例:
<IfModule mod_ratio.c>
Ratios on
</IfModule>
——————————————————————–
IgnoreHidden — 隐藏没有任何权限的文件
语法:IgnoreHidden [on|off]
默认:IgnoreHidden off
语境:<Limit>
——————————————————————–
Include — 包含另一个配置文件在你当前的配置文件
语法:Include [Include file]
语境:server config, <Directory>, <Anonymous>, <VirtualHost>, <Global>
范例:Include itwhy_ftp.conf
——————————————————————–
LDAPAliasDereference — LDAP别名规定如何操作
语法:LDAPAliasDereference [never find search always]
默认:LDAPAliasDereference never
语境:server config, <Global>, <VirtualHost>
模块:mod_ldap
——————————————————————–
LDAPAttr — 自定义一些LDAP属性
语法:LDAPAttr [uid gid homeDir userPass Shell cn memberUid Quota] [“NewAttribute”]
语境:server config, <Global>, <VirtualHost>
模块:mod_ldap
范例:<这个指定必需放在任何LDAP指令前面>
——————————————————————–
LDAPAuthBinds — 使用用户提供的口令和搜索到的用户 DN 绑定 LDAP 服务器,来验证口令
语法:LDAPAuthBinds [on off]
默认:LDAPAuthBinds off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPDefaultAuthScheme — 设置使用 hash 认证
语法:LDAPDefaultAuthScheme [crypt clear]
默认:LDAPDefaultAuthScheme "crypt"
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPDefaultGID — 设置默认的GID,当GID属性没有找到时
语法:LDAPDefaultGID [default-gid]
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPDefaultUID — 设置默认的UID,当UID属性没有找到时
语法:LDAPDefaultUID [default-uid]
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPDNInfo — 设置 LDAP 默认绑定
语法:LDAPDNInfo [LDAPDNInfo “ldap-dn” “dn-password”]
默认:LDAPDNInfo "" ""
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
范例:<如果 LDAP 支持匿名绑定,只需要把用户DN和口令设置为空>
——————————————————————–
LDAPDoAuth — 设置BaseDN 以及 LDAP 查询的 filter 通过语句
语法:LDAPDoAuth [on off] [“auth-base-dn”] [“search-filter-template”]
默认:LDAPDoAuth off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
范例:LDAPDoAuth on "dc=itwhy,dc=org" "(&(uid=%u)(authorizedService=ftp)(ossxpConfirmed=TRUE))"
——————————————————————–
LDAPDoGIDLookups —
语法:LDAPDoGIDLookups [on off] [“gid-base-dn”] [“cn-filter-template”]
[“gid-number-filter-template”] [“member-uid-filter-template”]
默认:LDAPDoGIDLookups off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPDoQuotaLookups — 开启LDAP配额限制
语法:LDAPDoQuotaLookups [on off] [“base-dn”] [“quota-filter-template”] [“default-quota”]
默认:LDAPDoQuotaLookups off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPDoUIDLookups — 查找LDAP的UID目录
语法:LDAPDoUIDLookups [on off] [“uid-base-dn”] [“uid-filter-template”]
默认:LDAPDoUIDLookups off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPForceDefaultGID — 强制所有LDAP用户组使用相同的GID
语法:LDAPForceDefaultGID [on off]
默认:LDAPForceDefaultGID off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPForceDefaultUID — 强制所有LDAP用户使用相同的UID
语法:LDAPForceDefaultGID [on off]
默认:LDAPForceDefaultGID off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPForceGeneratedHomedir — 强制所有LDAP用户目录使用默认的前缀/后缀
语法:LDAPForceGeneratedHomedir [on off] [directory-mode]
默认:LDAPForceGeneratedHomedir off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPForceHomedirOnDemand — <已废弃>
——————————————————————–
LDAPGenerateHomedir — 开启自动创建LDAP用户目录
语法:LDAPGenerateHomedir [on off] [directory-mode]
默认:LDAPGenerateHomedir off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPGenerateHomedirPrefix — 按需要使用一个前缀创建用户目录
语法:LDAPGenerateHomedirPrefix [leading-path]
默认:LDAPGenerateHomedirPrefix off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
范例:
——————————————————————–
LDAPNegativeCache — 使LDAP缓存查找
语法:LDAPNegativeCache [on off]
默认:LDAPNegativeCache off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPProtocolVersion — 设置LDAP协议版本
语法:LDAPProtocolVersion [2 | 3]
默认:LDAPProtocolVersion 3
语境:server config, <Global>, <VirtualHost>
模块:mod_ldap
——————————————————————–
LDAPQueryTimeout — 设置一个LDAP查询超时
语法:LDAPQueryTimeout [timeout-seconds]
默认:LDAPQueryTimeout default-api-timeout
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPSearchScope — 指定用于LDAP搜索范围查询
语法:LDAPSearchScope [onelevel subtree]
默认:LDAPSearchScope subtree
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPServer — 设置LDAP服务器和端口
语法:LDAPServer [“hostname1:port1 hostname2:port2”]
默认:LDAPServer "localhost"
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LDAPUseTLS — 使TLS协议/SSL连接到LDAP服务器。
语法:LDAPUseTLS [on off]
默认:LDAPUseTLS off
语境:server config, <VirtualHost>, <Global>
模块:mod_ldap
——————————————————————–
LeechRatioMsg — 设置Ratio出错信息
语法:LeechRatioMsg [ LeechRatioMsg foo1 foo2 foo3 foo4]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
范例:LeechRatioMsg "please upload as well as download"
——————————————————————–
Limit — 设定命令、动作、性能控制
语法:Limit []
语境:server config, <VirtualHost>, <Directory>, <Anonymous>, <Global>, .ftpaccess
——————————————————————–
ListOptions — 设定客户端使用list命令的显示格式
语法:ListOptions [“options string”] [ [“strict”]]
语境:server config, <VirtualHost>, <Anonymous>, <Global>, <Directory>, .ftpaccess
模块:mod_ls
范例:ListOptions "-a"
——————————————————————–
LogFormat — 设置日志格式
语法:LogFormat [ LogFormat nickname “format-string”]
默认:LogFormat default "%h %l %u %t \"%r\" %s %b"
语境:server config
模块:mod_log
——————————————————————–
LoginPasswordPrompt — 设置登陆密码提示
语法:LoginPasswordPrompt [on|off]
默认:LoginPasswordPrompt on
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
——————————————————————–
MasqueradeAddress — 配置服务器地址显示给客户端
语法:MasqueradeAddress [ip-address|dns-hostname]
语境:server config, <VirtualHost>
范例:MasqueradeAddress nat-gw.mydomain.com
——————————————————————–
MaxClients — 客户端数量限制
语法:MaxClients [number|none [message]]
语境:server config, <Anonymous>, <VirtualHost>, <Global>
模块:mod_auth
——————————————————————–
MaxClientsPerClass — 以类的型式限制客户端数
语法:MaxClientsPerClass [name number|”none” [message]]
语境:server config, <VirtualHost>, <Global>
模块:mod_auth
范例:MaxClientsPerClass foo1 3 "Only one such client at a time."
——————————————————————–
MaxClientsPerHost — 限制同一主机客户端数量
语法:MaxClientsPerHost [number|none [message]]
默认:MaxClientsPerHost none
语境:server config, <Anonymous>, <VirtualHost>, <Global>
模块:mod_auth
——————————————————————–
MaxClientsPerUser — 限制同一用户的客户端数量
语法:MaxClientsPerUser [number|none [message]]
默认:MaxClientsPerUser none
语境:server config, <VirtualHost>, <Global>, <Anonymous>
模块:mod_auth
范例:MaxClientsPerUser 2 "Only one such user at a time."
——————————————————————–
MaxConnectionRate — 限制服务器TCP连接数
语法:MaxConnectionRate [connections per second]
语境:server config
范例:MaxConnectionRate 4
——————————————————————–
MaxConnectionsPerHost — 限制同一主机连接数
语法:MaxConnectionsPerHost [number|none [message]]
语境:server config, <Anonymous>, <VirtualHost>, <Global>
模块:mod_auth
——————————————————————–
MaxHostsPerUser — 限制同一用户使用主机数量
语法:MaxHostsPerUser [ number|none [message]]
语境:server config, <Anonymous>, <VirtualHost>, <Global>
模块:mod_auth
范例:MaxHostsPerUser 1 "对不起,你已经在其它地方登录了。"
——————————————————————–
MaxInstances — 限制服务器子进程数量
语法:MaxInstances [number]
语境:server config
——————————————————————–
MaxLoginAttempts — 设置密码尝试次数
语法:MaxLoginAttempts [number]
默认:MaxLoginAttempts 3
语境:server config, <VirtualHost>, <Global>
模块:mod_auth
范例:<需要syslog机制>
——————————————————————–
MaxRetrieveFileSize — 下载文件大小限制
语法:MaxRetrieveFileSize [ number|”*” units [“user”|”group”|”class” expression]]
语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory>, .ftpaccess
模块:mod_xfer
范例:MaxRetrieveFileSize 1 Gb
——————————————————————–
MaxStoreFileSize — 上传文件大小限制
语法:MaxStoreFileSize [ number|”*” units [“user”|”group”|”class” expression]]
语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory>, .ftpaccess
模块:mod_xfer
范例:MaxStoreFileSize 50 Kb user anonymous
——————————————————————–
MultilineRFC2228 — 开启RFC2228扩展模式
语法:MultilineRFC2228 [on|off]
默认:MultilineRFC2228 off
语境:server config
——————————————————————–
Order — 配置allow和deny的优先级
语法:Order [allow,deny|deny,allow]
默认:Order allow,deny
语境:<Limit>
——————————————————————–
PassivePorts — 指定ftp数据端口使用范围
语法:PassivePorts [min-pasv-port max-pasv-port]
语境:server config, <VirtualHost>, <Global>
范例:PassivePorts 49152 65534
——————————————————————–
PathAllowFilter — 匹配所有新上传的文件,返回为“假”将不会成功
语法:PathAllowFilter [regular-expression]
语境:server config, <VirtualHost>, <Anonymous>, <Global>, <Directory>, .ftpaccess
范例:PathAllowFilter ^[a-z0-9._-]+$
——————————————————————–
PathDenyFilter — 匹配所有新上传的文件,返回为“假”将成功
语法:PathDenyFilter [regular-expression]
默认:server config, <VirtualHost>, <Anonymous>, <Global>, <Directory>, .ftpaccess
范例:PathDenyFilter "(\\.ftpaccess|\\.htaccess)$"
——————————————————————–
PersistentPasswd — 使用unix的/etc/passwd检查帐户
语法:PersistentPasswd [on|off]
语境:server config
模块:mod_auth_unix
——————————————————————–
PidFile — 设置主进程pid文件
语法:PidFile [filename]
语境:server config, <Global>
——————————————————————–
Port — 设置ftp控制端口
语法:Port [port-number]
默认:Port 21
语境:server config, <VirtualHost>
——————————————————————–
RadiusAcctServer — 指定RADIUS服务器
语法:RadiusAcctServer [server[:port] shared-secret [timeout]]
语境:server config, <Global>, <VirtualHost>
模块:mod_radius
——————————————————————–
RadiusEngine — 开启RADIUS支持
语法:RadiusEngine [on|off]
默认:RadiusEngine off
语境:server config, <Global>, <VirtualHost>
模块:mod_radius
——————————————————————–
RadiusLog — 设置RADIUS日志记录文件
语法:RadiusLog [“file”|none]
语境:server config, <Global>, <VirtualHost>
模块:mod_radius
——————————————————————–
RadiusRealm — 设置认证区域
语法:RadiusRealm [realm]
语境:server config, <Global>, <VirtualHost>
模块:mod_radius
范例:RadiusRealm .castaglia.org
——————————————————————–
RadiusUserInfo — 设置RADIUS登陆信息
语法:RadiusUserInfo [uid gid home shell [suppl-group-names suppl-group-ids]]
语境:server config, <Global>, <VirtualHost>
模块:mod_radius
——————————————————————–
RatioFile — 指定Ratios记录文件
语法:RatioFile [RatioFile]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
范例:RatioFile /work/ratio.dat
——————————————————————–
Ratios — 开启Ratios模块支持(上传下载限制)
语法:Ratios [on off]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
——————————————————————–
RatioTempFile — Ratio临时文件
语法:RatioTempFile [RatioTempFile]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
——————————————————————–
RequireValidShell — 允许基于/etc/shells连接
语法:RequireValidShell [on|off]
默认:RequireValidShell on
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
范例:RequireValidShell off
——————————————————————–
RewriteCondition — 定义一条规则重写来自客户端的命令
语法:RewriteCondition [condition pattern]
语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory>
模块:mod_rewrite
范例:RewriteCondition %m STOR
——————————————————————–
RewriteEngine — 启用和禁用mod_rewrite模块
语法:RewriteEngine [on|off]
语境:server config, <Global>, <VirtualHost>
模块:mod_rewrite
——————————————————————–
RewriteLock — 设置RewriteMaps同步所使用的加锁文件名
语法:RewriteLock [ filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_rewrite
——————————————————————–
RewriteLog — 设置mod_rewrite日志文件
语法:RewriteLog [file|”none”]
默认:mod_rewrite
语境:server config, <Global>, <VirtualHost>
模块:mod_rewrite
——————————————————————–
RewriteMap — 定义一个重写地图
语法:RewriteMap [map-name map-type:map-soure]
语境:server config, <Global>, <VirtualHost>
模块:mod_rewrite
范例:RewriteMap usermap txt:/path/to/usermap.txt
——————————————————————–
RewriteRule — 定义重写规则
语法:RewriteRule [pattern substitution]
语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory>
模块:mod_rewrite
范例:RewriteRule ^(.*) "${replace:!$1!%20!_}"
——————————————————————–
RLimitCPU — CPU资源限制
语法:RLimitCPU [[“daemon”|”session”|”none”] soft-limit|”max” [hard-limit|”max”]]
语境:server config
——————————————————————–
RLimitMemory — 内存资源限制
语法:RLimitMemory [[“daemon”|”session”|”none”] soft-limit[units]|”max” [hard-limit[units]|”max”]]
语境:server config
——————————————————————–
RLimitOpenFiles — 文件句柄限制
语法:RLimitOpenFiles [[“daemon”|”session”|”none”] soft-limit|”max” [hard-limit|”max”]]
语境:server config
——————————————————————–
RootLogin — root用户登录许可
语法:RootLogin [on|off]
默认:RootLogin off
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
——————————————————————–
RootRevoke — 完全丢弃root权限
语法:RootRevoke [on|off]
默认:RootRevoke off
语境:server config, <VirtualHost>, <Global>, <Anonymous>
模块:mod_auth
——————————————————————–
SaveRatios — 保存Ratios数据,由RatioFile指定文件。
语法:SaveRatios [on off]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
——————————————————————–
ScoreboardFile — 跟踪会话记录文件
语法:ScoreboardFile [file]
默认:ScoreboardFile /usr/local/var/proftpd.scoreboard
语境:server config
——————————————————————–
ServerAdmin — 设置系统管理员邮箱
语法:ServerAdmin [“admin-email-address”]
默认:ServerAdmin root@[ServerName]
语境:server config, <VirtualHost>
——————————————————————–
ServerIdent — 客户端连接显示信息
语法:ServerIdent [off|on [identification string]]
默认:ServerIdent on "ProFTPD [version] Server (server name) [hostname]"
语境:server config, <VirtualHost>, <Global>
范例:ServerIdent on "Welcome to ftp.linux.co.uk"
——————————————————————–
ServerLog — 服务器日专文件
语法:ServerLog [path]
语境:server config, <VirtualHost>, <Global>
模块:mod_log
——————————————————————–
ServerName — 服务器名称显示给用户
语法:ServerName [“name”]
默认:ServerName "ProFTPD Server [version]"
语境:server config, <VirtualHost>
——————————————————————–
ServerType — 配置服务器运行模式standalone和inetd
语法:ServerType [ServerType type-identifier]
默认:ServerType standalone
语境:server config
——————————————————————–
SetEnv — 增加和改变环境变量
语法:SetEnv [key value]
语境:server config, <VirtualHost>, <Global>
范例:SetEnv ODBCINI /usr/local/etc/odbc.ini
——————————————————————–
ShowSymlinks — 切换显示符号链接
语法:ShowSymlinks [on|off]
默认:ShowSymlinks On
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_ls
——————————————————————–
SocketBindTight — 设置tcp/ip套接字如何创建
语法:SocketBindTight [on|off]
默认:SocketBindTight off
语境:server config
——————————————————————–
SocketOptions — 套接字选项
语法:SocketOptions [[maxseg ] [rcvbuf ] [sndbuf ]]
语境:server config, <VirtualHost>
——————————————————————–
SQLAuthenticate — 指定认证方法和如何鉴别
语法1:SQLAuthenticate [on off]
语法2:SQLAuthenticate [users] [groups] [userset [fast]] [groupset [fast]]
默认:SQLAuthenticate on
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLAuthTypes — 设置认证类型和检查顺序
语法:SQLAuthTypes [[OpenSSL]] [ [Crypt]] [ [Backend]] [ [Plaintext]] [ [Empty]]
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLBackend — 设置sql模块
语法:SQLBackend [backend]
默认:SQLBackend Depends
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
范例:SQLBackend postgres
——————————————————————–
SQLConnectInfo — 设置连接sql信息:数据库、主机、用户、密码…
语法:SQLConnectInfo [connection-info] [ [username]] [ [password]] [ [policy]]
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
范例:SQLConnectInfo ftpusers@foo.com:3000 admin mypassword 30
——————————————————————–
SQLDefaultGID — 设置sql默认的用户组GID
语法:SQLDefaultGID [defaultgid]
默认:SQLDefaultGID 65533
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLDefaultHomedir — 设置sql用户默认主目录
语法:SQLDefaultHomedir [path]
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLDefaultUID — 设置sql用户默认id
语法:SQLDefaultUID [defaultuid]
默认:SQLDefaultUID 65533
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLEngine — 启用mod_sql模块
语法:SQLEngine [on|off|auth|log]
默认:SQLEngine on
语境:server config, <Global>, <VirtualHost>, <Anonymous>
模块:mod_sql
——————————————————————–
SQLGroupInfo — 配置sql数据库用户组表结构
语法:SQLGroupInfo [group-table group-name gid members]
默认:SQLGroupInfo "groups groupname gid members"
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLGroupWhereClause — 配置一个条件查询用户组
语法:SQLGroupWhereClause [where-clause]
默认:SQLGroupWhereClause off
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
范例:SQLGroupWhereClause "LoginAllowed = 'true'"
——————————————————————–
SQLHomedirOnDemand — <已废弃>
——————————————————————–
SQLLog — 有条件的使用sql记录用户日志信息
语法:SQLLog [ cmd-set query-name [“IGNORE_ERRORS”]
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
范例:
SQLLog RETR,STOR insertfileinfo
SQLNamedQuery insertfileinfo INSERT "'%f', %b, '%u@%v', now()" filehistory
——————————————————————–
SQLLogFile — 指定一个日志文件为mod_sql调试和日志
语法:SQLLogFile [file]
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLMinID — 同时设置SQLMinUserGID 和 SQLMinUserID
语法:SQLMinID [minimum-id]
默认:SQLMinID 999
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLMinUserGID — 检查用户组的GID,如果小于SQLMinUserGID则返回SQLDefaultGID
语法:SQLMinUserGID [minimum-gid]
默认:SQLMinUserGID 999
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLMinUserUID — 检查用户组的ID,如果小于SQLMinUserID则返回SQLDefaultID
语法:SQLMinUserUID [minimum-uid]
默认:SQLMinUserUID 999
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLNamedQuery — 指定一个查询和一个标识符用于SQLShowInfo和SQLLog
语法:SQLNamedQuery [“name” limit|regex|ip value]
默认:
语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Limit>, .ftpaccess
模块:mod_sql
——————————————————————–
SQLNegativeCache — 开启sql查询缓存
语法:SQLNegativeCache [on off]
默认:SQLNegativeCache off
语境:server config, <VirtualHost>, <Global>
模块:mod_sql
——————————————————————–
SQLShowInfo — 可用于任何命令成功后发送信息给客户端
语法:SQLShowInfo [cmd-set numeric query-string]
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
范例:
SQLNamedQuery count SELECT "count from users where userid='%u'"
SQLShowInfo PASS "230" "You've logged on %{count} times, %u"
——————————————————————–
SQLUserInfo — 配置SQL用户表
语法:SQLUserInfo [user-table user-name passwd uid gid home-dir shell]
默认:SQLUserInfo "users userid passwd uid gid homedir shell"
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
——————————————————————–
SQLUserWhereClause — 设置一个条件用于用户查询
语法:SQLUserWhereClause [where-clause]
语境:server config, <Global>, <VirtualHost>
模块:mod_sql
范例:SQLUserWhereClause "LoginAllowed = 'true'"
——————————————————————–
StoreUniquePrefix — 设置一个前缀添加到文件名
语法:StoreUniquePrefix [“prefix”]
语境:server config, <Global>, <VirtualHost>, <Global>, <Anonymous>, <Directory> .ftpaccess
模块:mod_xfer
范例:StoreUniquePrefix "Wibble"
——————————————————————–
SyslogFacility — 设置日志机制
语法:SyslogFacility [SyslogFacility facility-level]
语境:server config
——————————————————————–
SyslogLevel — 日志级别
语法:SyslogLevel [emerg|alert|crit|error|warn|notice|info|debug]
语境:server config, <VirtualHost>, <Global>
——————————————————————–
SystemLog — 重定向日志文件
语法:SystemLog [filename|NONE]
语境:server config
模块:mod_log
——————————————————————–
TCPAccessFiles — 会话(allow和deny)日志文件
语法:TCPAccessFiles [allow-filename deny-filename]
语境:server config, <VirtualHost>, <Global>, <Anonymous>
模块:mod_wrap
——————————————————————–
TCPAccessSyslogLevels — 会话日志级别
语法:TCPAccessSyslogLevels [allow-level deny-level]
默认:TCPAccessSyslogLevels info warn
语境:server config, <VirtualHost>, <Global>, <Anonymous>
模块:mod_wrap
——————————————————————–
tcpBackLog — 控制TCP缓存
语法:tcpBackLog [backlog-size]
默认:tcpBackLog 5
语境:server config
——————————————————————–
TCPGroupAccessFiles — 用户组会话日志
语法:TCPGroupAccessFiles [group-expression allow-filename deny-filename]
语境:server config, <VirtualHost>, <Global>
模块:mod_wrap
范例:TCPGroupAccessFiles !wheel /etc/hosts.allow /etc/hosts.deny
——————————————————————–
tcpNoDelay — 启用TCP_NODELAY
语法:tcpNoDelay [on|off]
默认:tcpNoDelay on
语境:server config, <VirtualHost>, <Global>
——————————————————————–
TCPServiceName — 配置用户mod_wrap的名称
语法:TCPServiceName [name]
默认:TCPServiceName proftpd
语境:server config, <VirtualHost>, <Global>
模块:mod_wrap
——————————————————————–
TCPUserAccessFiles — 用户会话日志
语法:TCPUserAccessFiles [user-expression allow-filename deny-filename]
语境:server config, <VirtualHost>, <Global>
模块:mod_wrap
——————————————————————–
TimeoutIdle — 设置空闲超时断开
语法:TimeoutIdle [seconds]
默认:TimeoutIdle 600
语境:server config, <VirtualHost>, <Global>
——————————————————————–
TimeoutLinger — 关闭一个数据连接等待时间
语法:TimeoutLinger [seconds]
默认:TimeoutLinger 180
语境:server config, <VirtualHost>, <Global>
——————————————————————–
TimeoutLogin — 设置登陆超时断开
语法:TimeoutLogin [seconds]
默认:TimeoutLogin 300
语境:server config, <VirtualHost>, <Global>
模块:mod_auth
——————————————————————–
TimeoutNoTransfer — 设置客户端转移在多少时间内不需要认证
语法:TimeoutNoTransfer [seconds]
默认:TimeoutNoTransfer 300
语境:server config, <VirtualHost>, <Global>
模块:mod_xfer
——————————————————————–
TimeoutSession — 设置会话超时
语法:TimeoutSession [seconds [“user”|”group”|”class” expression]]
语境:server config, <VirtualHost>, <Global>, <Anonymous>
模块:mod_auth
范例:TimeoutSession 3600
——————————————————————–
TimeoutStalled — 设置下载停滞超时
语法:TimeoutStalled [seconds]
默认:TimeoutStalled 3600
语境:server config, <VirtualHost>, <Global>
模块:mod_xfer
——————————————————————–
TimesGMT — 格林尼治时间
语法:TimesGMT [on|off]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
——————————————————————–
TLSCACertificateFile — 定义一个CA证书用于验证客户端证书
语法:TLSCACertificateFile [CA certificate filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:TLSCACertificateFile /etc/ftpd/ca-bundle.pem
——————————————————————–
TLSCACertificatePath — 定义一个CA证书目录用于验证客户端证书
语法:TLSCACertificatePath [Path to your CA certificates]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:TLSCACertificatePath /etc/ftpd/ca/
——————————————————————–
TLSCARevocationFile — 定义一个的文件
语法:TLSCARevocationFile [CA revocation filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:TLSCARevocationFile /etc/ftpd/ca-crl-bundle.pem
——————————————————————–
TLSCARevocationPath — 定义一个撤销CA证书的目录
语法:TLSCARevocationPath [Path to a directory with CA revocation certificates]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:
——————————————————————–
TLSCertificateChainFile — Define an all in one certification file
语法:TLSCertificateChainFile [TLSCertificateChainFile filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
——————————————————————–
TLSCipherSuite — 定义密码列表
语法:TLSCipherSuite [cipher-list]
默认:TLSCipherSuite ALL:!ADH
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:TLSCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
——————————————————————–
TLSDHParamFile — Define a file used in Diffie-Hellman key exchange
语法:TLSDHParamFile [Absolute path to the Diffie-Hellman param file]
默认:server config, <Global>, <VirtualHost>
语境:mod_tls
——————————————————————–
TLSDSACertificateFile — DSA证书
语法:TLSDSACertificateFile [filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
——————————————————————–
TLSDSACertificateKeyFile — DSA私钥
语法:TLSDSACertificateKeyFile [filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
——————————————————————–
TLSEngine — 启用 TLS/SSL 连接
语法:TLSEngine [on off]
默认:TLSEngine off
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
——————————————————————–
TLSLog — TLS模块日志
语法:TLSLog [filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
——————————————————————–
TLSOptions — 配置TLS选项
语法:TLSOptions [AllowDotLogin] [Allow PerUser] [ExportCertData] [NoCertRequest]
[StdEnvVars] [dNSNameRequired] [iPAddressRquired]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:TLSOptions iPAddressRequired StdEnvVars
——————————————————————–
TLSProtocol — 定义SSL/TLS协议版本
语法:TLSProtocol [SSLv23 SSLv3 TLSv1]
默认:TLSProtocol SSLv23
语境:server config
模块:mod_tls
范例:
——————————————————————–
TLSRandomSeed — 定义一个申请PRNG
语法:TLSRandomSeed [Absolute path to the file]
默认:TLSRandomSeed openssl-dir/.rnd
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:TLSRandomSeed /etc/ftpd/server.rnd
——————————————————————–
TLSPassPhraseProvider — 指向外部程序,为每个加密证书的密钥文件
语法:TLSDSACertificateFile [filename]
语境:server config
模块:mod_tls
范例:TLSPassPhraseProvider /etc/ftpd/tls/get-passphrase
——————————————————————–
TLSRenegotiate — 配置SSL谈判时间
语法:TLSRenegotiate [[“ctrl” secs] [“data” Kbytes]
[“timeout” secs]|[“required” on|off]|”none”]]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:TLSRenegotiate timeout 300
——————————————————————–
TLSRequired — 设置TLS应用于数据、会话
语法:TLSRequired [on | off | ctrl | data | auth | auth+data]
默认:TLSRequired off
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例:TLSRequired auth+data
——————————————————————–
TLSRSACertificateFile — RSA证书文件
语法:TLSRSACertificateFile [filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
——————————————————————–
TLSRSACertificateKeyFile — RSA私钥
语法:TLSRSACertificateKeyFile [filename]
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
——————————————————————–
TLSVerifyClient — 配置如何检查客户端证书
语法:TLSVerifyClient [on off]
默认:TLSVerifyClient off
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
——————————————————————–
TLSVerifyDepth — 配置TLS验证客户端证书深度
语法:TLSVerifyDepth [depth]
默认:TLSVerifyDepth 9
语境:server config, <Global>, <VirtualHost>
模块:mod_tls
范例: TLSVerifyDepth 10
——————————————————————–
TransferLog — 指定xferlog日志路经
语法:TransferLog [filename|NONE]
默认:TransferLog /var/log/xferlog
语境:server config, <Anonymous>, <VirtualHost>, <Global>
——————————————————————–
TransferRate — 配置上传,下载传速率
语法:TransferRate [cmds] [kilobytes-per-sec[:free-bytes]]
[[“user”|”group”|”class” expression]]
语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directory>, .ftpaccess
模块:mod_xfer
范例:TransferRate APPE,STOR 8.0:1024 class uploaders
——————————————————————–
Umask — 设置默认的Umask
语法:Umask [file octal-mask [directory octal-mask]]
语境:server config, <Anonymous>, <VirtualHost>, <Directory>, <Global>, .ftpaccess
范例:Umask 022
——————————————————————–
UnsetEnv — 注销环境变量
语法:SetEnv [key]
语境:server config, <VirtualHost>, <Global>
范例:SetEnv ODBCINI
——————————————————————–
UseFtpUsers — 设置基本的用户认证文件 /etc/ftpusers
语法:UseFtpUsers [on|off]
默认:UseFtpUsers on
语境:server config, <Anonymous>, <VirtualHost>, <Global>
模块:mod_auth
范例:
——————————————————————–
UseGlobbing — 启用和禁用通配符(*)
语法:UseGlobbing [on|off]
默认:UseGlobbing on
语境:server config, <VirtualHost>, <Global>, <Anonymous>
模块:mod_ls
——————————————————————–
UseIPv6 — 禁用IPv6
语法:UseIPv6 [“on”|”off”]
默认:UseIPv6 on
语境:server config
模块:
范例:
——————————————————————–
User — proftpd进程运行的用户环境
语法:User [User userid]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
——————————————————————–
UserAlias — 设置用户别名
语法:UserAlias [login-user real-user]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
范例:UserAlias anonymous ftp
——————————————————————–
UserDirRoot — 为匿名服务器设置主目录
语法:UserDirRoot [on|off]
默认:UserDirRoot off
语境:<Anonymous>
模块:mod_auth
——————————————————————–
UseReverseDNS — DNS反查
语法:UseReverseDNS [on|off]
默认:UseReverseDNS on
语境:server config
——————————————————————–
UserOwner — 设置用户新的文件所有权
语法:UserOwner [UserOwner username]
语境:<Anonymous>, <Directory>
——————————————————————–
UserPassword — 创建一对哈希编码用户和密码
语法:UserPassword [userid hashed-password]
语境:server config, <VirtualHost>, <Anonymous>, <Global>
模块:mod_auth
——————————————————————–
UserRatio — 使用用户匹配设置上传下载比
语法:UserRatio [User fileratio filequota byteratio bytequota]
语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess
模块:mod_ratio
范例:UserRatio www 0 0 2 0
——————————————————————–
UseSendfile — 文件发送的优化
语法:UseSendfile [on|off]
默认:UseSendfile on
语境:server config, <VirtualHost>, <Global>
模块:mod_xfer
——————————————————————–
UseUTF8 — <已废弃,请使用UseEncoding>
——————————————————————–
VirtualHost — 设置虚拟主机
语法:VirtualHost []
语境:server config
范例:
<VirtualHost host1.domain.com host2.domain.com>

</VirtualHost>
——————————————————————–
WtmpLog — 设置记录到wtmp文件
语法:WtmpLog [on|off|NONE]
默认:WtmpLog on
语境:server config, <VirtualHost>, <Anonymous>, <Global>
——————————————————————–
LangDefault — 设置默认语言
语法:LangDefault language
默认:LangDefault en_US
语境:server config, <VirtualHost>, <Global>
模块:mod_lang
——————————————————————–
LangEngine — 开启语言模块
语法:LangEngine [on|off]
默认:LangEngine on
语境:server config, <VirtualHost>, <Global>
模块:mod_lang
——————————————————————–
LangPath — 设置mod_lang模块需要的locale文件路经
语法:LangPath [path]
语境:server config
模块:mod_lang
范例:LangPath /etc/proftpd/locale
——————————————————————–
UseEncoding — 设置服务端和客户端语言
语法:UseEncoding [on|off|local-charset client-charset]
语境:server config, <VirtualHost>, <Global>
模块:mod_lang
范例:UseEncoding utf8 gbk