service:proftpd
差異處
這裏顯示兩個版本的差異處。
| 下次修改 | 前次修改 | ||
|
service:proftpd [2007/05/06 03:30] wenpei 建立 |
service:proftpd [2008/12/16 20:13] (目前版本) wenpei |
||
|---|---|---|---|
| 行 1: | 行 1: | ||
| + | ====== proftpd 使用 TLS 加密 ====== | ||
| + | ===== 產生金鑰 ===== | ||
| + | openssl genrsa -out proftpd.key2 1024 | ||
| + | |||
| + | openssl req -new -x509 -days 3650 -key proftpd.key -out proftpd.crt | ||
| + | |||
| + | <code> | ||
| + | Country Name (2 letter code) [AU]:TW | ||
| + | State or Province Name (full name) [Some-State]:Taiwan | ||
| + | Locality Name (eg, city) []:Jhungli | ||
| + | Organization Name (eg, company) [Internet Widgits Pty Ltd]:SARS.tw | ||
| + | Organizational Unit Name (eg, section) []:FTP | ||
| + | Common Name (eg, YOUR name) []:sars.tw | ||
| + | Email Address []:username@domain.name | ||
| + | </code> | ||
| + | |||
| + | chmod go-r proftpd.key proftpd.crt | ||
| + | |||
| + | mv proftpd.key proftpd.crt /etc/ssl/certs/ | ||
| + | |||
| + | ===== 設定 tls.conf ===== | ||
| + | <code> | ||
| + | <IfModule mod_tls.c> | ||
| + | TLSEngine on | ||
| + | TLSLog /var/log/proftpd/tls.log | ||
| + | TLSProtocol SSLv23 | ||
| + | TLSRSACertificateFile /etc/ssl/certs/proftpd.crt | ||
| + | TLSRSACertificateKeyFile /etc/ssl/certs/proftpd.key | ||
| + | TLSVerifyClient off | ||
| + | TLSRequired on | ||
| + | TLSRenegotiate required off | ||
| + | </IfModule> | ||
| + | </code> | ||
| + | |||
| + | ===== 設定 proftpd.conf ===== | ||
| + | 在檔案中加入: | ||
| + | Include /etc/proftpd/tls.conf | ||
| + | |||
| + | 並檢查 modules.conf 中是否有: | ||
| + | LoadModule mod_tls.c | ||
| + | |||
| ====== 用 mysql 管理 proftpd 帳號 ====== | ====== 用 mysql 管理 proftpd 帳號 ====== | ||
| + | http://www.castaglia.org/proftpd/doc/contrib/ProFTPD-mini-HOWTO-SQL.html | ||
| + | |||
| http://blog.wu-boy.com/2006/10/21/22 | http://blog.wu-boy.com/2006/10/21/22 | ||
| http://www.khoosys.net/single.htm?ipg=848 | http://www.khoosys.net/single.htm?ipg=848 | ||
| - | ===== 支援 ===== | + | http://www.lslnet.com/linux/f/docs1/i34/big5258812.htm |
| - | 確定 proftpd 有支援 sql module | + | |
| - | # proftpd -l | grep sql | + | |
| - | mod_sql.c | + | |
| - | mod_sql_mysql.c | + | |
| - | mod_quotatab_sql.c | + | |
| ===== 建立資料庫 ===== | ===== 建立資料庫 ===== | ||
| 行 39: | 行 77: | ||
| ) TYPE = MYISAM; | ) TYPE = MYISAM; | ||
| + | ===== 建立 mysql 使用者 ===== | ||
| + | 建立使用者 proftpd,並指定 ftp 資料庫權限。 | ||
| + | |||
| + | ===== proftpd 設定 ===== | ||
| + | ==== proftpd.conf ==== | ||
| + | 使用 sql.conf 設定,檔案中要有這行: | ||
| + | Include /etc/proftpd/sql.conf | ||
| + | |||
| + | ==== sql.conf ==== | ||
| + | <code> | ||
| + | <IfModule mod_sql.c> | ||
| + | SQLBackend mysql | ||
| + | SQLEngine on | ||
| + | SQLAuthenticate on | ||
| + | SQLAuthTypes Crypt Plaintext | ||
| + | SQLConnectInfo ftp@localhost proftpd Cc:Y6yn9fnH7Zhtx | ||
| + | SQLUserInfo ftp username password uid gid homedir shell | ||
| + | SQLGroupInfo groups groupname gid members | ||
| + | #設定mysql log檔 | ||
| + | SQLLogFile /var/log/proftpd/sql.log | ||
| + | PersistentPasswd off | ||
| + | </IfModule> | ||
| + | </code> | ||
| + | |||
| + | ===== 建立 group ===== | ||
| + | # groupadd ftpgroup | ||
| + | |||
| + | ===== 建立 user 和 group 資料 ===== | ||
| + | ===== 重新啟動 proftpd ===== | ||
| + | # /etc/init.d/proftpd restart | ||
service/proftpd.1178393425.txt.gz · 上一次變更: 2007/05/06 04:29 (外部編輯)
若無特別註明,本 wiki 上的內容都是採用以下授權方式: CC Attribution-Noncommercial-Share Alike 3.0 Unported
