/etc/vsftpd.conf
listen_ipv6=NO anonymous_enable=NO local_enable=YES write_enable=YES local_umask=002 anon_upload_enable=NO anon_mkdir_write_enable=NO anon_other_write_enable=NO chown_uploads=YES chown_username=username xferlog_file=/var/log/vsftpd.log xferlog_std_format=NO idle_session_timeout=600 data_connection_timeout=120 nopriv_user=ftp async_abor_enable=NO ascii_upload_enable=NO ascii_download_enable=NO ftpd_banner=Hi chroot_local_user=YES ls_recurse_enable=NO # rsa_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem # rsa_private_key_file=/etc/ssl/private/ssl-cert-snakeoil.key listen_address=server_ip_address max_clients=4 check_shell=NO max_per_ip=4 hide_ids=YES pasv_min_port=50000 pasv_max_port=60000 force_dot_files=NO chmod_enable=YES
mv /etc/ftpusers /etc/ftp.deny touch /etc/ftp.allow
/etc/pam.d/vsftpd
uth required pam_listfile.so item=user sense=deny file=/etc/ftp.deny onerr=succeed auth required pam_listfile.so item=user sense=allow file=/etc/ftp.allow onerr=fail
