proftp mysql_proftp + mysql 配置管理

一、下载安装proftpmysql下载wgetftp://ftp.proftpd.org/distrib/source/proftpd-1.3.4d.tar.gztarzxfproftpd-1.3.4d.tar.gzINSTALLATIONMod_ClamavToinstallMod

一、下载安装proftp mysql

下载  wget ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.4d.tar.gz

tar zxf proftpd-1.3.4d.tar.gz

INSTALLATION  Mod_Clamav

To install Mod_Clamav, download and unpack the Mod_Clamav source code.

wget

tar xzvf mod_clamav-0.10.tar.gz

Download the latest proftpd source code, and prepare it for building Mod_Clamav.

wget ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.1.tar.gz

tar xzvf proftpd-1.3.1.tar.gz

cp mod_clamav-0.10/mod_clamav.* proftpd-1.3.1/contrib

Apply the required patch:

cd proftpd-1.3.1

patch -p1 < ../mod_clamav-0.10/proftpd.patch

Now the usual steps for building ProFTPd, using third-party modules, apply. Additionally, you may change any configure arguments to meet your needs.

cd proftpd-1.3.4d

--prefix=/usr/local/proftpd-1.3.4d --enable-ctrls --with-mysql-config=/usr/local/mysql/bin/mysql_config --with-libraries=/usr/local/mysql/lib

--with-includes=/usr/local/mysql/include --enable-shadow --enable-autoshadow --enable-openssl --enable-pool-size --enable-dso

--with-modules=mod_ratio:mod_readme:mod_wrap2:mod_wrap2_sql:mod_ifsession:mod_sql:mod_sql_mysql:mod_sql_passwd:mod_quotatab:mod_quotatab_sql:mod_quotatab_file:mod_clamav

--with-include=/usr/local/lab/unixODBC-2.3.2/includes:/usr/local/mysql/include --with-libraries=/usr/local/lab/unixODBC-2.3.2/lib:/usr/local/mysql/lib

make && make install

说明：

--with-modules=mod_sql:mod_sql_mysql:mod_quotatab:mod_quotatab_sql   这句是让编译ProFTPD 支持MySQL的模块，并有磁盘限额支持；

--with-includes=    这是来指定MySQL服务器includes所在的位置；在这里我设置的是/usr/include/mysql，因为我的MySQL服务器的includes的确在这个目录；你可以根据自己的机器环境来调整；

--with-libraries=    这是来指定MySQL服务器libraries所在的位置；在这里我设置的是/usr/lib/mysql，因为我的MySQL服务器的libraries的确在这个目录；你可以根据自己的机器环境来调整；

到此proftp已安装结束

主要配置文件如下:

[root@server:/usr/local/proftpd/etc]# cat proftpd.conf

# This is a basic ProFTPD configuration file (rename it to

# 'proftpd.conf' for actual use.  It establishes a single server

# and a single anonymous login.  It assumes that you have a user/group

# "nobody" and "ftp" for normal operation and anon.

ServerName                      "ProFTPD Default Installation"

ServerType                      standalone

DefaultServer                   on

# Port 21 is the standard FTP port.

Port                            21

# Don't use IPv6 support by default.

UseIPv6                         off

# Umask 022 is a good standard umask to prevent new dirs and files

# from being group and world writable.

Umask                           022

TimeoutLogin         120

TimeoutIdle          600

TimeoutNoTransfer    900

TimeoutStalled      3600

# Where do we put the pid files?

#ScoreboardPath    /var/run/proftpd

# To prevent DoS attacks, set the maximum number of child processes

# to 30.  If you need to allow more than 30 concurrent connections

# at once, simply increase this value.  Note that this ONLY works

# in standalone mode, in inetd mode you should use an inetd server

# that allows you to limit maximum number of processes per service

# (such as xinetd).

MaxInstances                    30

MaxLoginAttempts        3

# Set the user and group under which the server will run.

User                            apache

Group                           users

# To cause every FTP user to be "jailed" (chrooted) into their home

# directory, uncomment this line.

#DefaultRoot ~

# Normally, we want files to be overwriteable.

AllowOverwrite          on

# 上传断点续传

AllowRetrieveRestart    on

AllowStoreRestart       on

# Bar use of SITE CHMOD by default

DenyAll

# A basic anonymous configuration, no upload directories.  If you do not

# want anonymous users, simply delete this entire section.

#

#  User                         ftp

#  Group                                ftp

# We want clients to be able to login with "anonymous" as well as "ftp"

#  UserAlias                    anonymous ftp

# Limit the maximum number of anonymous logins

#  MaxClients                   10

# We want 'welcome.msg' displayed at login, and '.message' displayed

# in each newly chdired directory.

#  DisplayLogin                 welcome.msg

#  DisplayChdir                 .message

# Limit WRITE everywhere in the anonymous chroot

#  

#    DenyAll

#  

#

#设置MySQL认证：

#数据库联接的信息，DatabaseName是数据库名， HostName是主机名，

#Port是端口号，UserName是连接数据库的用户名，Password是密码。

SQLConnectInfo proftpd@192.168.1.1 proftpd 123456  #用户名与密码

#数据库认证的类型：

SQLAuthTypes OpenSSL

#指定用来做用户认证的表的有关信息。("FTPUSERS"和"FTPGRPS"是数据表名字，等一会而在下面建立)

SQLUserInfo FTPUSERS userid passwd uid gid home shell

SQLGroupInfo FTPGRPS grpname gid members

#设置如果shell为空时允许用户登录：

RequireValidShell off

#数据库的鉴别

SQLAuthenticate users groups usersetfast groupsetfast

#如果home目录不存在，则系统会为根据它的home项新建一个目录：

CreateHome off

#判断这个用户是否允许登录本机

#SQLUserWhereClause "accesshost like'%10.10.26.195%'" #这里的%号ProFtp不识别, 妈的!所以用下面的方法.

SQLUserWhereClause "0 !=FIND_IN_SET('192.168.1.1',accesshost)"

#SQL验证日志

#SQLLog

SQLLogFile /usr/local/proftpd/var/sql.log

#SQL验证用户的UID和GID

SQLMinUserUID 500

SQLMinUserGID 100

SQLDefaultUID 500

SQLDefaultGID 100

#####  #####

MaxClients      50

UseReverseDNS   off

IdentLookups  off

#QuotaLimitTable file:/usr/local/proftpd/etc/ftpquota.limittab

#QuotaTallyTable file:/usr/local/proftpd/etc/ftpquota.tallytab

QuotaDirectoryTally  on

QuotaDisplayUnits Mb

QuotaEngine on

QuotaLog /usr/local/proftpd/var/quota.log

QuotaShowQuotas on

QuotaOptions ScanOnLogin