论功能确实 proftpd 最为强大,以下为 proftpd.conf 的配置指定手册,呵呵,只有简短的说明啊!
-------------------------------------------------------------------- AccessDenyMsg -- 访问拒绝的信息提示(530)。 语法:AccessDenyMsg ["messge"] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth 范例:AccessDenyMsg "用户%u访问被拒绝!" -------------------------------------------------------------------- AccessGrantMsg -- 访问拒绝的信息提示(230)。 语法:AccessGrantMsg ["messge"] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth 范例:AccessGrantMsg "用户%u成功登陆!" -------------------------------------------------------------------- Allow -- 使用网络号、主机、域名控制允许访问 语法:Allow [ ["from"] "all"|"none"|host|network[,host|network[,...]]] 默认:Allow from all 语境:<Limit> 范例: <Limit LOGIN> Order allow,deny Allow from 128.44.26.,myhost.mydomain.edu,.trusted-domain.org Deny from all </Limit> -------------------------------------------------------------------- AllowAll -- 所有客户端允许访问 语法:AllowAll 语境:<Directory>, <Anonymous>, <Limit>, .ftpaccess 模块:mod_auth 范例: <Limit RETR> AllowAll </Limit> -------------------------------------------------------------------- AllowClass -- 使用类控制允许访问 语法:AllowClass [["AND"|"OR"|"regex"] class-expression] 语境:<Limit> 范例: <Class internal> From 192.168.0.0/24 </Class> <Limit LOGIN> AllowClass internal </Limit> -------------------------------------------------------------------- AllowFilter -- 以正则表达式匹配所有发送到proftpd的命令,匹配失败则会禁止此命令。 语法:AllowFilter [regular-expression] 语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directoryl>, .ftpaccess 范例:AllowFilter "^[a-zA-Z0-9 ,]*$" -------------------------------------------------------------------- AllowForeignAddress -- 控制客户端使用 PORT 模式(主动) 语法:AllowForeignAddress [on|off] 默认:AllowForeignAddress off 语境:server config, <VirtualHost>, <Anonymous>, <Global> -------------------------------------------------------------------- AllowGroup -- 使用用户组控制允许访问 语法:AllowGroup [["AND"|"OR"|"regex"] group-expression] 语境:<Limit> 范例:AllowGroup OR www,doc -------------------------------------------------------------------- AllowLogSymlinks -- 允许符号链接 语法:AllowLogSymlinks ["on"|"off"] 默认:AllowLogSymlinks off 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- AllowOverride -- 控制那些.ftpaccess文件将解析 语法:AllowOverride [on|off ["user"|"group"|"class" expression]] 默认:AllowOverride on 语境:server config, <Global>, <VirtualHost>, <Anonymous> -------------------------------------------------------------------- AllowOverwrite -- 控制能否覆盖现有的文件 语法:AllowOverwrite [on|off] 默认:AllowOverwrite off 语境:server config, <VirtualHost>, <Anonymous>, <Directory>, <Global>, .ftpaccess 模块:mod_xfer 范例:AllowOverwrite on -------------------------------------------------------------------- AllowRetrieveRestart -- 允许客户机恢复下载 语法:AllowRetrieveRestart [on|off] 默认:AllowRetrieveRestart on 语境:server config, <VirtualHost>, <Anonymous>, <Directory>, <Global>, .ftpaccess -------------------------------------------------------------------- AllowStoreRestart -- 允许客户机恢复上传(续传) 语法:AllowStoreRestart [on|off] 默认:AllowStoreRestart off 语境:server config, <VirtualHost>, <Anonymous>, <Directory>, <Global>, .ftpaccess -------------------------------------------------------------------- AllowUser -- 使用用户控制允许访问 语法:AllowUser [["AND"|"OR"|"regex"] user-expression] 语境:<Limit> 范例:AllowUser regex ^ftp -------------------------------------------------------------------- AnonRatio -- 使用匿名用户的密码匹配设置上传下载比(通常密码是邮箱) 语法:AnonRatio [AnonPWD fileratio filequota byteratio bytequota] AnonPWD:就是登入 proftpd 的匿名用户的密码 fileratio :这个是以档案为基准的『比例』,通常不限制,故为 0 filequota :预设能够下载多少档案,不限制时为 0 byteratio :就是上传/下载的比例,这个数字代表『1:下载』之意! bytequota :预设能够下载多少 KBytes 的档案!注意单位喔! 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio 范例:AnonRatio [email protected] 0 0 -2 0 -------------------------------------------------------------------- AnonRejectPasswords -- 屏蔽某些匿名用户的密码 语法:AnonRejectePasswords [regex] 语境:<Anonymous> 模块:mod_auth 范例:AnonRejectPasswords @evil\.org$ -------------------------------------------------------------------- AnonRequirePassword -- 使匿名用户提供一个有效的密码 语法:AnonRequirePassword [ on|off] 默认:AnonRequirePassword off 语境:<Anonymous> 模块:mod_auth -------------------------------------------------------------------- Anonymous -- 定义一个匿名服务 语法:Anonymous [root-directory] 语境:server config,<VirtualHost>, <Global> 范例: <Anonymous /home/ftp> <Directory *> <Limit WRITE> DenyALL </Limit> </Directory> </Anonymous> -------------------------------------------------------------------- AnonymousGroup -- 使组成员都成为匿名用户 语法:AnonymousGroup [group] 语境:server config, <VirtualHost>, <Global> 范例:AnonymousGroup www -------------------------------------------------------------------- AuthAliasOnly -- 只允许别名登陆,不允许真实用户登陆 语法:AuthAliasOnly [on|off] 默认:server config, <VirtualHost>, <Anonymous>, <Global> 语境:mod_auth -------------------------------------------------------------------- AuthGroupFile -- 使用用户组数据文件替代系统组 语法:AuthGroupFile [path] 语境:server config, <VirtualHost>, <Global> 模块:mod_auth_file 范例:AuthGroupFile /usr/local/proftpd/etc/itwhy.ftpd.group -------------------------------------------------------------------- AuthOrder -- 配置模块检查顺序 语法:AuthOrder [module-name...] 语境:server config, <VirtualHost>, <Global> 范例:AuthOrder mod_sql.c mod_ldap.c -------------------------------------------------------------------- AuthPAM -- 启用/禁用 PAM 认证 语法:AuthPAM [on|off] 默认:AuthPAM on 语境:server config,<VirtualHost>, <Global> 模块:mod_auth_pam -------------------------------------------------------------------- AuthPAMConfig -- PAM 服务名称 语法:AuthPAMConfig [service] 默认:AuthPAMConfig ftp 语境:server config,<VirtualHost>, <Global> 模块:mod_auth_pam 范例:AuthPAMConfig itwhy_ftp -------------------------------------------------------------------- AuthUserFile -- 使用用户数据文件替代系统用户 语法:AuthUserFile [path] 语境:server config,<VirtualHost>, <Global> 模块:mod_auth_file 范例:AuthGroupFile /usr/local/proftpd/etc/itwhy.ftpd.user -------------------------------------------------------------------- AuthUsingAlias -- 通过别名认证代替映射的用户名 语法:AuthUsingAlias [on|off] 默认:AuthUsingAlias off 语境:<Anonymous> 模块:mod_auth -------------------------------------------------------------------- Bind -- <已废弃> -------------------------------------------------------------------- ByteRatioErrMsg -- ByteRatio限制超过提示信息。 语法:ByteRatioErrMsg ["messge"] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio 范例:ByteRatioErrMsg "ByteRatio limit exceeded, upload something first..." -------------------------------------------------------------------- CapabilitiesEngine -- 启用/禁用mod_cap模块 语法:CapabilitiesEngine [on/off] 语境:server config, <VirtualHost>, <Global> 模块:mod_cap -------------------------------------------------------------------- CapabilitiesSet -- mod_cap的能力操纵 语法:CapabilitiesSet [[+/-]capability...] 语境:server config, <VirtualHost>, <Global> 模块:mod_cap 范例: <IfModule mod_cap.c> CapabilitiesEngine on CapabilitiesSet -CAP_CHOWN +CAP_DAC_READ_SEARCH +CAP_FOWNER </IfModule> -------------------------------------------------------------------- CDPath -- 定义使用 cd 命令改变目录时使用的搜索路径 语法:CDPath [directory] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 范例:CDPath /home/public CDPath /var/devel 用户使用cd命令改变目录时,会依次搜寻/home/public和/var/devel,只要有相应的权限。 -------------------------------------------------------------------- Class -- 定义一个客户端连接类 语法:VirtualHost [<Class name>] 语境:server config 范例:见AllowClass指令 -------------------------------------------------------------------- CommandBufferSize -- 限制最大的命令的长度 语法:CommandBufferSize [size] 默认:CommandBufferSize 512 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- CreateHome -- 如果主目录不存在,则创建它 语法:CreateHome [off|on [<mode>] [skel <path>] [dirmode <mode>]] 语境:server config, <VirtualHost>, <Global> 模块:mod_auth 范例:CreateHome on skel /etc/ftpd/skel dirmode 700 -------------------------------------------------------------------- CwdRatioMsg -- Ratio模块的指令 语法:CwdRatioMsg ["messge"] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio 范例:CwdRatioMsg "Please upload first!" -------------------------------------------------------------------- DebugLevel -- 设置调试级别 语法:DebugLevel [0-9] 默认:DebugLevel 0 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- DefaultAddress -- 设置服务器默认监听IP址 语法:DefaultAddress [dns-names|ip-addresses seperated with spaces] 语境:server config 范例:DefaultAddress 192.168.10.30 my.domain.tld -------------------------------------------------------------------- DefaultChdir -- 设置会话开始目录 语法:DefaultChdir [directory [group-expression]] 默认:DefaultChdir ~ 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth -------------------------------------------------------------------- DefaultRoot -- 改变用户根目录,使用户监禁在此目录中 语法:DefaultRoot [directory [group-expression]] 默认:DefaultRoot / 语境:server config, <VirtualHost>, <Global> 模块:mod_auth 范例:DefaultRoot ~ users,!admin -------------------------------------------------------------------- DefaultServer -- 设置默认的服务 语法:DefaultServer [on|off] 语境:server config,<VirtualHost> -------------------------------------------------------------------- DefaultTransferMode -- 设置默认的数据传输方式 语法:DefaultTransferMode [ascii|binary] 默认:DefaultTransferMode ascii 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- DeferWelcome -- 不显示欢迎信息,直到用户验证 语法:DeferWelcome [on|off] 默认:DeferWelcome off 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- Define -- Initialises定义为IfDefine 语法:Define [parameter-name] 语境:any context 范例:IfDefine LoadLimiting -------------------------------------------------------------------- DelayEngine -- 使用mod_delay模块 语法:DelayEngine [on|off] 默认:DelayEngine on 语境:server config 模块:mod_delay 范例: <IfModule mod_delay.c> DelayEngine off </IfModule> -------------------------------------------------------------------- DelayTable -- 指令存储时间数据文件 语法:DelayTable [path] 默认:DelayTable var/proftpd/proftpd.delay 语境:server config 模块:mod_delay -------------------------------------------------------------------- DeleteAbortedStores -- 删除除未完全上传的文件 语法:DeleteAbortedStores [on|off] 默认:DeleteAbortedStores off 语境:server, <VirtualHost>, <Directory>, <Anonymous>, <Global>, .ftpaccess 模块:mod_xfer -------------------------------------------------------------------- Deny -- 与 Allow 指令相反 -------------------------------------------------------------------- DenyAll -- 与 AllowAll 指令相反 -------------------------------------------------------------------- DenyClass -- 与 AllowClass 指令相反 -------------------------------------------------------------------- DenyFilter -- 与 AllowFilter 指令相反<PASV模式下无效> -------------------------------------------------------------------- DenyGroup -- 与 AllowGroup 指令相反 -------------------------------------------------------------------- DenyUser -- 与 AllowUser 指令相反 -------------------------------------------------------------------- Directory -- 目录限制配置指令 语法:[<Directory pathname>] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 范例: <Directory ~/anon-ftp> <Limit WRITE> DenyAll </Limit> </Directory> -------------------------------------------------------------------- DirFakeGroup -- 掩饰真正的文件所属组 语法:DirFakeGroup [On|Off [groupname]] 默认:DirFakeGroup Off 语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directory>, .ftpaccess 模块:mod_ls 范例:DirFakeGroup On ftp -------------------------------------------------------------------- DirFakeMode -- 掩饰真实文件的权限 语法:DirFakeMode [octal-mode] 语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directory> 模块:mod_ls 范例:DirFakeMode 0640 -------------------------------------------------------------------- DirFakeUser -- 掩饰真正的文件所属用户 语法:DirFakeUser [On|Off [username]] 默认:DirFakeUser Off 语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directory>, .ftpaccess 模块:mod_ls -------------------------------------------------------------------- DisplayChdir -- 设置改变目录时显示的文件 语法:DisplayChdir [filename [true]] 语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory> 范例:DisplayChdir /home/ftp/.DisplayChdir true -------------------------------------------------------------------- DisplayConnect -- 设置用户连接时显示的文件 语法:DisplayConnect [filename] 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- DisplayFileTransfer -- 设置文件转移时显示的文件(上传或下载) 语法:DisplayFileTransfer ["name" limit|regex|ip value] 语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Limit>, .ftpaccess 模块:mod_xfer -------------------------------------------------------------------- DisplayFirstChdir -- 设置当第一次进入一个目录时显示的文件<已废弃> -------------------------------------------------------------------- DisplayGoAway -- 设置最大连接数达到上限被拒绝时显示的文件 语法:DisplayGoAway [filename] 语境:server config, <VirtualHost>, <Anonymous>, <Global> -------------------------------------------------------------------- DisplayLogin -- 设置用户成功登陆时显示的文件 语法:DisplayLogin [filename] 语境:server config, <VirtualHost>, <Anonymous>, <Global> -------------------------------------------------------------------- DisplayQuit -- 设置用户退出时显示的文件 语法:DisplayQuit [filename] 语境:server config, <VirtualHost>, <Anonymous>, <Global> -------------------------------------------------------------------- DisplayReadme -- 显示指令文件的修改时间 语法:DisplayReadme [filename or pattern] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_readme 范例:DisplayReadme README* -------------------------------------------------------------------- ExtendedLog -- 定制log文件 语法:ExtendedLog [filename [[command-classes] format-nickname]] 语境:server config, <VirtualHost>, <Anonymous> <Global> 模块:mod_log 范例:ExtendedLog /var/log/ftp.log read,write -------------------------------------------------------------------- FileRatioErrMsg -- 文件超过限制显示的信息 语法:FileRatioErrMsg ["messge"] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio 范例:FileRatioErrMsg "FileRatio limit exceeded, upload something first..." -------------------------------------------------------------------- Global -- 全局设置指令 语法:<Global> 语境:server config, <VirtualHost> -------------------------------------------------------------------- Group -- 设置proftpd进程所属组 语法:Group [Group groupid] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 范例:Group:nogroup -------------------------------------------------------------------- GroupOwner -- 设置新文件的缺省组 语法:GroupOwner [GroupOwner groupname] 语境:<Anonymous>, <Directory>, .ftpaccess 范例:GroupOwner nogroup -------------------------------------------------------------------- GroupPassword -- 设置群组密码,允许组成员使用单一的密码 语法:GroupPassword [GroupPassword groupid hashed-password] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth 范例:GroupPassword www.itwhy.org 500 -------------------------------------------------------------------- GroupRatio -- 使用用户组匹配设置上传下载比 语法:GroupRatio [group fileratio filequota byteratio bytequota] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio 范例:GroupRatio www 0 0 2 0 -------------------------------------------------------------------- HiddenStor -- 开启安全上传<已废弃> -------------------------------------------------------------------- HiddenStores -- 开启安全上传(HiddenStor的延续) 语法:HiddenStor [on|off] 默认:HiddenStor off 语境:<Directory>, <Anonymous>, <VirtualHost>, <Global> 模块:mod_xfer 范例:<这个指令不能和AllowStoreRestart指令同时开启> -------------------------------------------------------------------- HideFiles -- 隐藏指令的文件 语法:HideFiles [[!]regexp|"none" ["user"|"group"|"class" expression]] 语境:<Directory>, .ftpaccess 范例:HideFiles !(\.htm|\.html)$ group webmaster -------------------------------------------------------------------- HideGroup -- 针对用户组隐藏文件 语法:HideGroup [groupid] 语境:<Directory>, <Anonymous> 范例:HideGroup 500 -------------------------------------------------------------------- HideNoAccess -- 针对户没有此目录权限 语法:HideNoAccess [on|off] 语境:<Directory>,<Anonymous> -------------------------------------------------------------------- HideUser -- 使用用户隐藏文件 语法:HideUser [userid] 语境:<Directory>, <Anonymous> -------------------------------------------------------------------- HostRatio -- 使用主机匹配设置上传下载比 语法:GroupRatio [host fileratio filequota byteratio bytequota] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio -------------------------------------------------------------------- IdentLookups -- 通过RFC1413调用捕获客户机用户的UID 语法:IdentLookups [on|off] 默认:IdentLookups on 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- IfDefine -有条件地跳过或处理文件中部分命令 语法:IfDefine [[!]define-label] 语境:any 范例: <IfDefine USE_SQL> LoadModule mod_sql.c LoadModule mod_sql_mysql.c </IfDefine> -------------------------------------------------------------------- IfModule -- 解析一段基于模块的指定 语法:IfModule [[!]module-name] 语境:any 范例: <IfModule mod_ratio.c> Ratios on </IfModule> -------------------------------------------------------------------- IgnoreHidden -- 隐藏没有任何权限的文件 语法:IgnoreHidden [on|off] 默认:IgnoreHidden off 语境:<Limit> -------------------------------------------------------------------- Include -- 包含另一个配置文件在你当前的配置文件 语法:Include [Include file] 语境:server config, <Directory>, <Anonymous>, <VirtualHost>, <Global> 范例:Include itwhy_ftp.conf -------------------------------------------------------------------- LDAPAliasDereference -- LDAP别名规定如何操作 语法:LDAPAliasDereference [never find search always] 默认:LDAPAliasDereference never 语境:server config, <Global>, <VirtualHost> 模块:mod_ldap -------------------------------------------------------------------- LDAPAttr -- 自定义一些LDAP属性 语法:LDAPAttr [uid gid homeDir userPass Shell cn memberUid Quota] ["NewAttribute"] 语境:server config, <Global>, <VirtualHost> 模块:mod_ldap 范例:<这个指定必需放在任何LDAP指令前面> -------------------------------------------------------------------- LDAPAuthBinds -- 使用用户提供的口令和搜索到的用户 DN 绑定 LDAP 服务器,来验证口令 语法:LDAPAuthBinds [on off] 默认:LDAPAuthBinds off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPDefaultAuthScheme -- 设置使用 hash 认证 语法:LDAPDefaultAuthScheme [crypt clear] 默认:LDAPDefaultAuthScheme "crypt" 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPDefaultGID -- 设置默认的GID,当GID属性没有找到时 语法:LDAPDefaultGID [default-gid] 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPDefaultUID -- 设置默认的UID,当UID属性没有找到时 语法:LDAPDefaultUID [default-uid] 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPDNInfo -- 设置 LDAP 默认绑定 语法:LDAPDNInfo [LDAPDNInfo "ldap-dn" "dn-password"] 默认:LDAPDNInfo "" "" 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap 范例:<如果 LDAP 支持匿名绑定,只需要把用户DN和口令设置为空> -------------------------------------------------------------------- LDAPDoAuth -- 设置BaseDN 以及 LDAP 查询的 filter 通过语句 语法:LDAPDoAuth [on off] ["auth-base-dn"] ["search-filter-template"] 默认:LDAPDoAuth off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap 范例:LDAPDoAuth on "dc=itwhy,dc=org" "(&(uid=%u)(authorizedService=ftp)(ossxpConfirmed=TRUE))" -------------------------------------------------------------------- LDAPDoGIDLookups -- 语法:LDAPDoGIDLookups [on off] ["gid-base-dn"] ["cn-filter-template"] ["gid-number-filter-template"] ["member-uid-filter-template"] 默认:LDAPDoGIDLookups off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPDoQuotaLookups -- 开启LDAP配额限制 语法:LDAPDoQuotaLookups [on off] ["base-dn"] ["quota-filter-template"] ["default-quota"] 默认:LDAPDoQuotaLookups off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPDoUIDLookups -- 查找LDAP的UID目录 语法:LDAPDoUIDLookups [on off] ["uid-base-dn"] ["uid-filter-template"] 默认:LDAPDoUIDLookups off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPForceDefaultGID -- 强制所有LDAP用户组使用相同的GID 语法:LDAPForceDefaultGID [on off] 默认:LDAPForceDefaultGID off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPForceDefaultUID -- 强制所有LDAP用户使用相同的UID 语法:LDAPForceDefaultGID [on off] 默认:LDAPForceDefaultGID off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPForceGeneratedHomedir -- 强制所有LDAP用户目录使用默认的前缀/后缀 语法:LDAPForceGeneratedHomedir [on off] [directory-mode] 默认:LDAPForceGeneratedHomedir off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPForceHomedirOnDemand -- <已废弃> -------------------------------------------------------------------- LDAPGenerateHomedir -- 开启自动创建LDAP用户目录 语法:LDAPGenerateHomedir [on off] [directory-mode] 默认:LDAPGenerateHomedir off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPGenerateHomedirPrefix -- 按需要使用一个前缀创建用户目录 语法:LDAPGenerateHomedirPrefix [leading-path] 默认:LDAPGenerateHomedirPrefix off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap 范例: -------------------------------------------------------------------- LDAPNegativeCache -- 使LDAP缓存查找 语法:LDAPNegativeCache [on off] 默认:LDAPNegativeCache off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPProtocolVersion -- 设置LDAP协议版本 语法:LDAPProtocolVersion [2 | 3] 默认:LDAPProtocolVersion 3 语境:server config, <Global>, <VirtualHost> 模块:mod_ldap -------------------------------------------------------------------- LDAPQueryTimeout -- 设置一个LDAP查询超时 语法:LDAPQueryTimeout [timeout-seconds] 默认:LDAPQueryTimeout default-api-timeout 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPSearchScope -- 指定用于LDAP搜索范围查询 语法:LDAPSearchScope [onelevel subtree] 默认:LDAPSearchScope subtree 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPServer -- 设置LDAP服务器和端口 语法:LDAPServer ["hostname1:port1 hostname2:port2"] 默认:LDAPServer "localhost" 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LDAPUseTLS -- 使TLS协议/SSL连接到LDAP服务器。 语法:LDAPUseTLS [on off] 默认:LDAPUseTLS off 语境:server config, <VirtualHost>, <Global> 模块:mod_ldap -------------------------------------------------------------------- LeechRatioMsg -- 设置Ratio出错信息 语法:LeechRatioMsg [ LeechRatioMsg foo1 foo2 foo3 foo4] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio 范例:LeechRatioMsg "please upload as well as download" -------------------------------------------------------------------- Limit -- 设定命令、动作、性能控制 语法:Limit [<Limit command|command-group [command2 ..]>] 语境:server config, <VirtualHost>, <Directory>, <Anonymous>, <Global>, .ftpaccess -------------------------------------------------------------------- ListOptions -- 设定客户端使用list命令的显示格式 语法:ListOptions ["options string"] [ ["strict"]] 语境:server config, <VirtualHost>, <Anonymous>, <Global>, <Directory>, .ftpaccess 模块:mod_ls 范例:ListOptions "-a" -------------------------------------------------------------------- LogFormat -- 设置日志格式 语法:LogFormat [ LogFormat nickname "format-string"] 默认:LogFormat default "%h %l %u %t \"%r\" %s %b" 语境:server config 模块:mod_log -------------------------------------------------------------------- LoginPasswordPrompt -- 设置登陆密码提示 语法:LoginPasswordPrompt [on|off] 默认:LoginPasswordPrompt on 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth -------------------------------------------------------------------- MasqueradeAddress -- 配置服务器地址显示给客户端 语法:MasqueradeAddress [ip-address|dns-hostname] 语境:server config, <VirtualHost> 范例:MasqueradeAddress nat-gw.mydomain.com -------------------------------------------------------------------- MaxClients -- 客户端数量限制 语法:MaxClients [number|none [message]] 语境:server config, <Anonymous>, <VirtualHost>, <Global> 模块:mod_auth -------------------------------------------------------------------- MaxClientsPerClass -- 以类的型式限制客户端数 语法:MaxClientsPerClass [name number|"none" [message]] 语境:server config, <VirtualHost>, <Global> 模块:mod_auth 范例:MaxClientsPerClass foo1 3 "Only one such client at a time." -------------------------------------------------------------------- MaxClientsPerHost -- 限制同一主机客户端数量 语法:MaxClientsPerHost [number|none [message]] 默认:MaxClientsPerHost none 语境:server config, <Anonymous>, <VirtualHost>, <Global> 模块:mod_auth -------------------------------------------------------------------- MaxClientsPerUser -- 限制同一用户的客户端数量 语法:MaxClientsPerUser [number|none [message]] 默认:MaxClientsPerUser none 语境:server config, <VirtualHost>, <Global>, <Anonymous> 模块:mod_auth 范例:MaxClientsPerUser 2 "Only one such user at a time." -------------------------------------------------------------------- MaxConnectionRate -- 限制服务器TCP连接数 语法:MaxConnectionRate [connections per second] 语境:server config 范例:MaxConnectionRate 4 -------------------------------------------------------------------- MaxConnectionsPerHost -- 限制同一主机连接数 语法:MaxConnectionsPerHost [number|none [message]] 语境:server config, <Anonymous>, <VirtualHost>, <Global> 模块:mod_auth -------------------------------------------------------------------- MaxHostsPerUser -- 限制同一用户使用主机数量 语法:MaxHostsPerUser [ number|none [message]] 语境:server config, <Anonymous>, <VirtualHost>, <Global> 模块:mod_auth 范例:MaxHostsPerUser 1 "对不起,你已经在其它地方登录了。" -------------------------------------------------------------------- MaxInstances -- 限制服务器子进程数量 语法:MaxInstances [number] 语境:server config -------------------------------------------------------------------- MaxLoginAttempts -- 设置密码尝试次数 语法:MaxLoginAttempts [number] 默认:MaxLoginAttempts 3 语境:server config, <VirtualHost>, <Global> 模块:mod_auth 范例:<需要syslog机制> -------------------------------------------------------------------- MaxRetrieveFileSize -- 下载文件大小限制 语法:MaxRetrieveFileSize [ number|"*" units ["user"|"group"|"class" expression]] 语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory>, .ftpaccess 模块:mod_xfer 范例:MaxRetrieveFileSize 1 Gb -------------------------------------------------------------------- MaxStoreFileSize -- 上传文件大小限制 语法:MaxStoreFileSize [ number|"*" units ["user"|"group"|"class" expression]] 语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory>, .ftpaccess 模块:mod_xfer 范例:MaxStoreFileSize 50 Kb user anonymous -------------------------------------------------------------------- MultilineRFC2228 -- 开启RFC2228扩展模式 语法:MultilineRFC2228 [on|off] 默认:MultilineRFC2228 off 语境:server config -------------------------------------------------------------------- Order -- 配置allow和deny的优先级 语法:Order [allow,deny|deny,allow] 默认:Order allow,deny 语境:<Limit> -------------------------------------------------------------------- PassivePorts -- 指定ftp数据端口使用范围 语法:PassivePorts [min-pasv-port max-pasv-port] 语境:server config, <VirtualHost>, <Global> 范例:PassivePorts 49152 65534 -------------------------------------------------------------------- PathAllowFilter -- 匹配所有新上传的文件,返回为“假”将不会成功 语法:PathAllowFilter [regular-expression] 语境:server config, <VirtualHost>, <Anonymous>, <Global>, <Directory>, .ftpaccess 范例:PathAllowFilter ^[a-z0-9._-]+$ -------------------------------------------------------------------- PathDenyFilter -- 匹配所有新上传的文件,返回为“假”将成功 语法:PathDenyFilter [regular-expression] 默认:server config, <VirtualHost>, <Anonymous>, <Global>, <Directory>, .ftpaccess 范例:PathDenyFilter "(\\.ftpaccess|\\.htaccess)$" -------------------------------------------------------------------- PersistentPasswd -- 使用unix的/etc/passwd检查帐户 语法:PersistentPasswd [on|off] 语境:server config 模块:mod_auth_unix -------------------------------------------------------------------- PidFile -- 设置主进程pid文件 语法:PidFile [filename] 语境:server config, <Global> -------------------------------------------------------------------- Port -- 设置ftp控制端口 语法:Port [port-number] 默认:Port 21 语境:server config, <VirtualHost> -------------------------------------------------------------------- RadiusAcctServer -- 指定RADIUS服务器 语法:RadiusAcctServer [server[:port] shared-secret [timeout]] 语境:server config, <Global>, <VirtualHost> 模块:mod_radius -------------------------------------------------------------------- RadiusEngine -- 开启RADIUS支持 语法:RadiusEngine [on|off] 默认:RadiusEngine off 语境:server config, <Global>, <VirtualHost> 模块:mod_radius -------------------------------------------------------------------- RadiusLog -- 设置RADIUS日志记录文件 语法:RadiusLog ["file"|none] 语境:server config, <Global>, <VirtualHost> 模块:mod_radius -------------------------------------------------------------------- RadiusRealm -- 设置认证区域 语法:RadiusRealm [realm] 语境:server config, <Global>, <VirtualHost> 模块:mod_radius 范例:RadiusRealm .castaglia.org -------------------------------------------------------------------- RadiusUserInfo -- 设置RADIUS登陆信息 语法:RadiusUserInfo [uid gid home shell [suppl-group-names suppl-group-ids]] 语境:server config, <Global>, <VirtualHost> 模块:mod_radius -------------------------------------------------------------------- RatioFile -- 指定Ratios记录文件 语法:RatioFile [RatioFile] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio 范例:RatioFile /work/ratio.dat -------------------------------------------------------------------- Ratios -- 开启Ratios模块支持(上传下载限制) 语法:Ratios [on off] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio -------------------------------------------------------------------- RatioTempFile -- Ratio临时文件 语法:RatioTempFile [RatioTempFile] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio -------------------------------------------------------------------- RequireValidShell -- 允许基于/etc/shells连接 语法:RequireValidShell [on|off] 默认:RequireValidShell on 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth 范例:RequireValidShell off -------------------------------------------------------------------- RewriteCondition -- 定义一条规则重写来自客户端的命令 语法:RewriteCondition [condition pattern] 语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory> 模块:mod_rewrite 范例:RewriteCondition %m STOR -------------------------------------------------------------------- RewriteEngine -- 启用和禁用mod_rewrite模块 语法:RewriteEngine [on|off] 语境:server config, <Global>, <VirtualHost> 模块:mod_rewrite -------------------------------------------------------------------- RewriteLock -- 设置RewriteMaps同步所使用的加锁文件名 语法:RewriteLock [ filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_rewrite -------------------------------------------------------------------- RewriteLog -- 设置mod_rewrite日志文件 语法:RewriteLog [file|"none"] 默认:mod_rewrite 语境:server config, <Global>, <VirtualHost> 模块:mod_rewrite -------------------------------------------------------------------- RewriteMap -- 定义一个重写地图 语法:RewriteMap [map-name map-type:map-soure] 语境:server config, <Global>, <VirtualHost> 模块:mod_rewrite 范例:RewriteMap usermap txt:/path/to/usermap.txt -------------------------------------------------------------------- RewriteRule -- 定义重写规则 语法:RewriteRule [pattern substitution] 语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Directory> 模块:mod_rewrite 范例:RewriteRule ^(.*) "${replace:!$1!%20!_}" -------------------------------------------------------------------- RLimitCPU -- CPU资源限制 语法:RLimitCPU [["daemon"|"session"|"none"] soft-limit|"max" [hard-limit|"max"]] 语境:server config -------------------------------------------------------------------- RLimitMemory -- 内存资源限制 语法:RLimitMemory [["daemon"|"session"|"none"] soft-limit[units]|"max" [hard-limit[units]|"max"]] 语境:server config -------------------------------------------------------------------- RLimitOpenFiles -- 文件句柄限制 语法:RLimitOpenFiles [["daemon"|"session"|"none"] soft-limit|"max" [hard-limit|"max"]] 语境:server config -------------------------------------------------------------------- RootLogin -- root用户登录许可 语法:RootLogin [on|off] 默认:RootLogin off 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth -------------------------------------------------------------------- RootRevoke -- 完全丢弃root权限 语法:RootRevoke [on|off] 默认:RootRevoke off 语境:server config, <VirtualHost>, <Global>, <Anonymous> 模块:mod_auth -------------------------------------------------------------------- SaveRatios -- 保存Ratios数据,由RatioFile指定文件。 语法:SaveRatios [on off] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio -------------------------------------------------------------------- ScoreboardFile -- 跟踪会话记录文件 语法:ScoreboardFile [file] 默认:ScoreboardFile /usr/local/var/proftpd.scoreboard 语境:server config -------------------------------------------------------------------- ServerAdmin -- 设置系统管理员邮箱 语法:ServerAdmin ["admin-email-address"] 默认:ServerAdmin root@[ServerName] 语境:server config, <VirtualHost> -------------------------------------------------------------------- ServerIdent -- 客户端连接显示信息 语法:ServerIdent [off|on [identification string]] 默认:ServerIdent on "ProFTPD [version] Server (server name) [hostname]" 语境:server config, <VirtualHost>, <Global> 范例:ServerIdent on "Welcome to ftp.linux.co.uk" -------------------------------------------------------------------- ServerLog -- 服务器日专文件 语法:ServerLog [path] 语境:server config, <VirtualHost>, <Global> 模块:mod_log -------------------------------------------------------------------- ServerName -- 服务器名称显示给用户 语法:ServerName ["name"] 默认:ServerName "ProFTPD Server [version]" 语境:server config, <VirtualHost> -------------------------------------------------------------------- ServerType -- 配置服务器运行模式standalone和inetd 语法:ServerType [ServerType type-identifier] 默认:ServerType standalone 语境:server config -------------------------------------------------------------------- SetEnv -- 增加和改变环境变量 语法:SetEnv [key value] 语境:server config, <VirtualHost>, <Global> 范例:SetEnv ODBCINI /usr/local/etc/odbc.ini -------------------------------------------------------------------- ShowSymlinks -- 切换显示符号链接 语法:ShowSymlinks [on|off] 默认:ShowSymlinks On 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_ls -------------------------------------------------------------------- SocketBindTight -- 设置tcp/ip套接字如何创建 语法:SocketBindTight [on|off] 默认:SocketBindTight off 语境:server config -------------------------------------------------------------------- SocketOptions -- 套接字选项 语法:SocketOptions [[maxseg <size>] [rcvbuf <size>] [sndbuf <size>]] 语境:server config, <VirtualHost> -------------------------------------------------------------------- SQLAuthenticate -- 指定认证方法和如何鉴别 语法1:SQLAuthenticate [on off] 语法2:SQLAuthenticate [users] [groups] [userset [fast]] [groupset [fast]] 默认:SQLAuthenticate on 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLAuthTypes -- 设置认证类型和检查顺序 语法:SQLAuthTypes [[OpenSSL]] [ [Crypt]] [ [Backend]] [ [Plaintext]] [ [Empty]] 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLBackend -- 设置sql模块 语法:SQLBackend [backend] 默认:SQLBackend Depends 语境:server config, <Global>, <VirtualHost> 模块:mod_sql 范例:SQLBackend postgres -------------------------------------------------------------------- SQLConnectInfo -- 设置连接sql信息:数据库、主机、用户、密码... 语法:SQLConnectInfo [connection-info] [ [username]] [ [password]] [ [policy]] 语境:server config, <Global>, <VirtualHost> 模块:mod_sql 范例:SQLConnectInfo [email protected]:3000 admin mypassword 30 -------------------------------------------------------------------- SQLDefaultGID -- 设置sql默认的用户组GID 语法:SQLDefaultGID [defaultgid] 默认:SQLDefaultGID 65533 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLDefaultHomedir -- 设置sql用户默认主目录 语法:SQLDefaultHomedir [path] 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLDefaultUID -- 设置sql用户默认id 语法:SQLDefaultUID [defaultuid] 默认:SQLDefaultUID 65533 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLEngine -- 启用mod_sql模块 语法:SQLEngine [on|off|auth|log] 默认:SQLEngine on 语境:server config, <Global>, <VirtualHost>, <Anonymous> 模块:mod_sql -------------------------------------------------------------------- SQLGroupInfo -- 配置sql数据库用户组表结构 语法:SQLGroupInfo [group-table group-name gid members] 默认:SQLGroupInfo "groups groupname gid members" 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLGroupWhereClause -- 配置一个条件查询用户组 语法:SQLGroupWhereClause [where-clause] 默认:SQLGroupWhereClause off 语境:server config, <Global>, <VirtualHost> 模块:mod_sql 范例:SQLGroupWhereClause "LoginAllowed = 'true'" -------------------------------------------------------------------- SQLHomedirOnDemand -- <已废弃> -------------------------------------------------------------------- SQLLog -- 有条件的使用sql记录用户日志信息 语法:SQLLog [ cmd-set query-name ["IGNORE_ERRORS"] 语境:server config, <Global>, <VirtualHost> 模块:mod_sql 范例: SQLLog RETR,STOR insertfileinfo SQLNamedQuery insertfileinfo INSERT "'%f', %b, '%u@%v', now()" filehistory -------------------------------------------------------------------- SQLLogFile -- 指定一个日志文件为mod_sql调试和日志 语法:SQLLogFile [file] 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLMinID -- 同时设置SQLMinUserGID 和 SQLMinUserID 语法:SQLMinID [minimum-id] 默认:SQLMinID 999 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLMinUserGID -- 检查用户组的GID,如果小于SQLMinUserGID则返回SQLDefaultGID 语法:SQLMinUserGID [minimum-gid] 默认:SQLMinUserGID 999 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLMinUserUID -- 检查用户组的ID,如果小于SQLMinUserID则返回SQLDefaultID 语法:SQLMinUserUID [minimum-uid] 默认:SQLMinUserUID 999 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLNamedQuery -- 指定一个查询和一个标识符用于SQLShowInfo和SQLLog 语法:SQLNamedQuery ["name" limit|regex|ip value] 默认: 语境:server config, <Global>, <VirtualHost>, <Anonymous>, <Limit>, .ftpaccess 模块:mod_sql -------------------------------------------------------------------- SQLNegativeCache -- 开启sql查询缓存 语法:SQLNegativeCache [on off] 默认:SQLNegativeCache off 语境:server config, <VirtualHost>, <Global> 模块:mod_sql -------------------------------------------------------------------- SQLShowInfo -- 可用于任何命令成功后发送信息给客户端 语法:SQLShowInfo [cmd-set numeric query-string] 语境:server config, <Global>, <VirtualHost> 模块:mod_sql 范例: SQLNamedQuery count SELECT "count from users where userid='%u'" SQLShowInfo PASS "230" "You've logged on %{count} times, %u" -------------------------------------------------------------------- SQLUserInfo -- 配置SQL用户表 语法:SQLUserInfo [user-table user-name passwd uid gid home-dir shell] 默认:SQLUserInfo "users userid passwd uid gid homedir shell" 语境:server config, <Global>, <VirtualHost> 模块:mod_sql -------------------------------------------------------------------- SQLUserWhereClause -- 设置一个条件用于用户查询 语法:SQLUserWhereClause [where-clause] 语境:server config, <Global>, <VirtualHost> 模块:mod_sql 范例:SQLUserWhereClause "LoginAllowed = 'true'" -------------------------------------------------------------------- StoreUniquePrefix -- 设置一个前缀添加到文件名 语法:StoreUniquePrefix ["prefix"] 语境:server config, <Global>, <VirtualHost>, <Global>, <Anonymous>, <Directory> .ftpaccess 模块:mod_xfer 范例:StoreUniquePrefix "Wibble" -------------------------------------------------------------------- SyslogFacility -- 设置日志机制 语法:SyslogFacility [SyslogFacility facility-level] 语境:server config -------------------------------------------------------------------- SyslogLevel -- 日志级别 语法:SyslogLevel [emerg|alert|crit|error|warn|notice|info|debug] 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- SystemLog -- 重定向日志文件 语法:SystemLog [filename|NONE] 语境:server config 模块:mod_log -------------------------------------------------------------------- TCPAccessFiles -- 会话(allow和deny)日志文件 语法:TCPAccessFiles [allow-filename deny-filename] 语境:server config, <VirtualHost>, <Global>, <Anonymous> 模块:mod_wrap -------------------------------------------------------------------- TCPAccessSyslogLevels -- 会话日志级别 语法:TCPAccessSyslogLevels [allow-level deny-level] 默认:TCPAccessSyslogLevels info warn 语境:server config, <VirtualHost>, <Global>, <Anonymous> 模块:mod_wrap -------------------------------------------------------------------- tcpBackLog -- 控制TCP缓存 语法:tcpBackLog [backlog-size] 默认:tcpBackLog 5 语境:server config -------------------------------------------------------------------- TCPGroupAccessFiles -- 用户组会话日志 语法:TCPGroupAccessFiles [group-expression allow-filename deny-filename] 语境:server config, <VirtualHost>, <Global> 模块:mod_wrap 范例:TCPGroupAccessFiles !wheel /etc/hosts.allow /etc/hosts.deny -------------------------------------------------------------------- tcpNoDelay -- 启用TCP_NODELAY 语法:tcpNoDelay [on|off] 默认:tcpNoDelay on 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- TCPServiceName -- 配置用户mod_wrap的名称 语法:TCPServiceName [name] 默认:TCPServiceName proftpd 语境:server config, <VirtualHost>, <Global> 模块:mod_wrap -------------------------------------------------------------------- TCPUserAccessFiles -- 用户会话日志 语法:TCPUserAccessFiles [user-expression allow-filename deny-filename] 语境:server config, <VirtualHost>, <Global> 模块:mod_wrap -------------------------------------------------------------------- TimeoutIdle -- 设置空闲超时断开 语法:TimeoutIdle [seconds] 默认:TimeoutIdle 600 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- TimeoutLinger -- 关闭一个数据连接等待时间 语法:TimeoutLinger [seconds] 默认:TimeoutLinger 180 语境:server config, <VirtualHost>, <Global> -------------------------------------------------------------------- TimeoutLogin -- 设置登陆超时断开 语法:TimeoutLogin [seconds] 默认:TimeoutLogin 300 语境:server config, <VirtualHost>, <Global> 模块:mod_auth -------------------------------------------------------------------- TimeoutNoTransfer -- 设置客户端转移在多少时间内不需要认证 语法:TimeoutNoTransfer [seconds] 默认:TimeoutNoTransfer 300 语境:server config, <VirtualHost>, <Global> 模块:mod_xfer -------------------------------------------------------------------- TimeoutSession -- 设置会话超时 语法:TimeoutSession [seconds ["user"|"group"|"class" expression]] 语境:server config, <VirtualHost>, <Global>, <Anonymous> 模块:mod_auth 范例:TimeoutSession 3600 -------------------------------------------------------------------- TimeoutStalled -- 设置下载停滞超时 语法:TimeoutStalled [seconds] 默认:TimeoutStalled 3600 语境:server config, <VirtualHost>, <Global> 模块:mod_xfer -------------------------------------------------------------------- TimesGMT -- 格林尼治时间 语法:TimesGMT [on|off] 语境:server config, <VirtualHost>, <Anonymous>, <Global> -------------------------------------------------------------------- TLSCACertificateFile -- 定义一个CA证书用于验证客户端证书 语法:TLSCACertificateFile [CA certificate filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例:TLSCACertificateFile /etc/ftpd/ca-bundle.pem -------------------------------------------------------------------- TLSCACertificatePath -- 定义一个CA证书目录用于验证客户端证书 语法:TLSCACertificatePath [Path to your CA certificates] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例:TLSCACertificatePath /etc/ftpd/ca/ -------------------------------------------------------------------- TLSCARevocationFile -- 定义一个的文件 语法:TLSCARevocationFile [CA revocation filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例:TLSCARevocationFile /etc/ftpd/ca-crl-bundle.pem -------------------------------------------------------------------- TLSCARevocationPath -- 定义一个撤销CA证书的目录 语法:TLSCARevocationPath [Path to a directory with CA revocation certificates] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例: -------------------------------------------------------------------- TLSCertificateChainFile -- Define an all in one certification file 语法:TLSCertificateChainFile [TLSCertificateChainFile filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls -------------------------------------------------------------------- TLSCipherSuite -- 定义密码列表 语法:TLSCipherSuite [cipher-list] 默认:TLSCipherSuite ALL:!ADH 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例:TLSCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP -------------------------------------------------------------------- TLSDHParamFile -- Define a file used in Diffie-Hellman key exchange 语法:TLSDHParamFile [Absolute path to the Diffie-Hellman param file] 默认:server config, <Global>, <VirtualHost> 语境:mod_tls -------------------------------------------------------------------- TLSDSACertificateFile -- DSA证书 语法:TLSDSACertificateFile [filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls -------------------------------------------------------------------- TLSDSACertificateKeyFile -- DSA私钥 语法:TLSDSACertificateKeyFile [filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls -------------------------------------------------------------------- TLSEngine -- 启用 TLS/SSL 连接 语法:TLSEngine [on off] 默认:TLSEngine off 语境:server config, <Global>, <VirtualHost> 模块:mod_tls -------------------------------------------------------------------- TLSLog -- TLS模块日志 语法:TLSLog [filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls -------------------------------------------------------------------- TLSOptions -- 配置TLS选项 语法:TLSOptions [AllowDotLogin] [Allow PerUser] [ExportCertData] [NoCertRequest] [StdEnvVars] [dNSNameRequired] [iPAddressRquired] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例:TLSOptions iPAddressRequired StdEnvVars -------------------------------------------------------------------- TLSProtocol -- 定义SSL/TLS协议版本 语法:TLSProtocol [SSLv23 SSLv3 TLSv1] 默认:TLSProtocol SSLv23 语境:server config 模块:mod_tls 范例: -------------------------------------------------------------------- TLSRandomSeed -- 定义一个申请PRNG 语法:TLSRandomSeed [Absolute path to the file] 默认:TLSRandomSeed openssl-dir/.rnd 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例:TLSRandomSeed /etc/ftpd/server.rnd -------------------------------------------------------------------- TLSPassPhraseProvider -- 指向外部程序,为每个加密证书的密钥文件 语法:TLSDSACertificateFile [filename] 语境:server config 模块:mod_tls 范例:TLSPassPhraseProvider /etc/ftpd/tls/get-passphrase -------------------------------------------------------------------- TLSRenegotiate -- 配置SSL谈判时间 语法:TLSRenegotiate [["ctrl" secs] ["data" Kbytes] ["timeout" secs]|["required" on|off]|"none"]] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例:TLSRenegotiate timeout 300 -------------------------------------------------------------------- TLSRequired -- 设置TLS应用于数据、会话 语法:TLSRequired [on | off | ctrl | data | auth | auth+data] 默认:TLSRequired off 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例:TLSRequired auth+data -------------------------------------------------------------------- TLSRSACertificateFile -- RSA证书文件 语法:TLSRSACertificateFile [filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls -------------------------------------------------------------------- TLSRSACertificateKeyFile -- RSA私钥 语法:TLSRSACertificateKeyFile [filename] 语境:server config, <Global>, <VirtualHost> 模块:mod_tls -------------------------------------------------------------------- TLSVerifyClient -- 配置如何检查客户端证书 语法:TLSVerifyClient [on off] 默认:TLSVerifyClient off 语境:server config, <Global>, <VirtualHost> 模块:mod_tls -------------------------------------------------------------------- TLSVerifyDepth -- 配置TLS验证客户端证书深度 语法:TLSVerifyDepth [depth] 默认:TLSVerifyDepth 9 语境:server config, <Global>, <VirtualHost> 模块:mod_tls 范例: TLSVerifyDepth 10 -------------------------------------------------------------------- TransferLog -- 指定xferlog日志路经 语法:TransferLog [filename|NONE] 默认:TransferLog /var/log/xferlog 语境:server config, <Anonymous>, <VirtualHost>, <Global> -------------------------------------------------------------------- TransferRate -- 配置上传,下载传速率 语法:TransferRate [cmds] [kilobytes-per-sec[:free-bytes]] [["user"|"group"|"class" expression]] 语境:server config, <VirtualHost>, <Global>, <Anonymous>, <Directory>, .ftpaccess 模块:mod_xfer 范例:TransferRate APPE,STOR 8.0:1024 class uploaders -------------------------------------------------------------------- Umask -- 设置默认的Umask 语法:Umask [file octal-mask [directory octal-mask]] 语境:server config, <Anonymous>, <VirtualHost>, <Directory>, <Global>, .ftpaccess 范例:Umask 022 -------------------------------------------------------------------- UnsetEnv -- 注销环境变量 语法:SetEnv [key] 语境:server config, <VirtualHost>, <Global> 范例:SetEnv ODBCINI -------------------------------------------------------------------- UseFtpUsers -- 设置基本的用户认证文件 /etc/ftpusers 语法:UseFtpUsers [on|off] 默认:UseFtpUsers on 语境:server config, <Anonymous>, <VirtualHost>, <Global> 模块:mod_auth 范例: -------------------------------------------------------------------- UseGlobbing -- 启用和禁用通配符(*) 语法:UseGlobbing [on|off] 默认:UseGlobbing on 语境:server config, <VirtualHost>, <Global>, <Anonymous> 模块:mod_ls -------------------------------------------------------------------- UseIPv6 -- 禁用IPv6 语法:UseIPv6 ["on"|"off"] 默认:UseIPv6 on 语境:server config 模块: 范例: -------------------------------------------------------------------- User -- proftpd进程运行的用户环境 语法:User [User userid] 语境:server config, <VirtualHost>, <Anonymous>, <Global> -------------------------------------------------------------------- UserAlias -- 设置用户别名 语法:UserAlias [login-user real-user] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth 范例:UserAlias anonymous ftp -------------------------------------------------------------------- UserDirRoot -- 为匿名服务器设置主目录 语法:UserDirRoot [on|off] 默认:UserDirRoot off 语境:<Anonymous> 模块:mod_auth -------------------------------------------------------------------- UseReverseDNS -- DNS反查 语法:UseReverseDNS [on|off] 默认:UseReverseDNS on 语境:server config -------------------------------------------------------------------- UserOwner -- 设置用户新的文件所有权 语法:UserOwner [UserOwner username] 语境:<Anonymous>, <Directory> -------------------------------------------------------------------- UserPassword -- 创建一对哈希编码用户和密码 语法:UserPassword [userid hashed-password] 语境:server config, <VirtualHost>, <Anonymous>, <Global> 模块:mod_auth -------------------------------------------------------------------- UserRatio -- 使用用户匹配设置上传下载比 语法:UserRatio [User fileratio filequota byteratio bytequota] 语境:<Directory>, <Anonymous>, <Limit>,.ftpaccess 模块:mod_ratio 范例:UserRatio www 0 0 2 0 -------------------------------------------------------------------- UseSendfile -- 文件发送的优化 语法:UseSendfile [on|off] 默认:UseSendfile on 语境:server config, <VirtualHost>, <Global> 模块:mod_xfer -------------------------------------------------------------------- UseUTF8 -- <已废弃,请使用UseEncoding> -------------------------------------------------------------------- VirtualHost -- 设置虚拟主机 语法:VirtualHost [<VirtualHost addresses seperated by spaces>] 语境:server config 范例: <VirtualHost host1.domain.com host2.domain.com> ... </VirtualHost> -------------------------------------------------------------------- WtmpLog -- 设置记录到wtmp文件 语法:WtmpLog [on|off|NONE] 默认:WtmpLog on 语境:server config, <VirtualHost>, <Anonymous>, <Global> -------------------------------------------------------------------- LangDefault -- 设置默认语言 语法:LangDefault language 默认:LangDefault en_US 语境:server config, <VirtualHost>, <Global> 模块:mod_lang -------------------------------------------------------------------- LangEngine -- 开启语言模块 语法:LangEngine [on|off] 默认:LangEngine on 语境:server config, <VirtualHost>, <Global> 模块:mod_lang -------------------------------------------------------------------- LangPath -- 设置mod_lang模块需要的locale文件路经 语法:LangPath [path] 语境:server config 模块:mod_lang 范例:LangPath /etc/proftpd/locale -------------------------------------------------------------------- UseEncoding -- 设置服务端和客户端语言 语法:UseEncoding [on|off|local-charset client-charset] 语境:server config, <VirtualHost>, <Global> 模块:mod_lang 范例:UseEncoding utf8 gbk --------------------------------------------------------------------
转载: IT手记 | http://www.itwhy.org/2011/07-19/612.html
# 本文采用 CC协议进行授权,转载本文请注明 本文链接 。/ 10 条留言 - Twitter / Buzz / 微博 / 问答 / 投稿 / 加入我们 wow0slx6bcs721xo1udcc相关文章: |
庆祝 Linux 20 周岁 |
Linux Deepin 开始招募原创团队 |
11 月份 Linux 市场占有率升至 5% |
译文:Linux 与 BSD 之间的 10 个不同之处 |
Linux Kernel 3.0, 不会有重大变化 |
无觅 |