Чем больше разбираюсь - тем больше запутываюсь :(
Установлен FreeBSD 5.3 + Proftpd 1.20
Хочется чтобы пользователь ftpuser заведённый в системе пог работать с фтп
ftpuser:*:1002:1002:User:/var/ftp/ftproot:/usr/sbin/nologin
GT# ls -lF /var/ftp/
total 2
drwxrwx--x 2 ftpuser ftpuser 512 Apr 20 15:25 ftproot/
Вот конфиг
ServerName ""
ServerType standalone
DefaultServer on
DenyFilter \*.*/
UseReverseDNS off
IdentLookups off
RequireValidShell off
TimeoutStalled 300
TimeoutLogin 120
TimeoutIdle 600
TimeoutNoTransfer 900
Port 21
Umask 022
MaxInstances 20
User nobody
Group nogroup
DeferWelcome off
SyslogLevel notice
AllowForeignAddress on
MaxClients 3 "Sorry, max %m users -- try again later"
MaxClientsPerHost 1 "Sorry, you may not connect more than one time."
SystemLog /var/log/proftpd/proftpd.log
TransferLog /var/log/proftpd/proftpd.log
ExtendedLog /var/log/proftpd/proftpd.log auth,read
LogFormat default "%h [%a] %l %u %t \"%r\" %s %f %b"
LogFormat auth "%v [%P] %h [%a] %t \"%r\" %s"
LogFormat read "%v [%P] %h [%a] %t \"%r\" %s %f %b"
LogFormat write "%h [%a] %l %u %t \"%r\" %s %f %b"
<Directory />
AllowOverwrite on
</Directory>
<Directory /var/ftp/ftproot/>
AllowOverwrite on
<Limit ALL>
AllowUser ftpuser
DenyAll
</Limit>
<Limit CWD XCWD CDUP>
# DenyAll
</Limit>
</Directory>
А вот логи (Сори за размер)
gt# ./proftpd -n -d 9 -c /usr/local/etc/proftpd.conf
- parsing '/usr/local/etc/proftpd.conf' configuration
- FS: using system open()
- FS: using system read()
- dispatching directive 'ServerName' to module mod_core
- dispatching directive 'ServerType' to module mod_core
- dispatching directive 'DefaultServer' to module mod_core
- dispatching directive 'DenyFilter' to module mod_core
- Compiling deny regex '\*.*/'.
- Allocated deny regex at location 0x80bc110.
- dispatching directive 'UseReverseDNS' to module mod_core
- dispatching directive 'IdentLookups' to module mod_core
- dispatching directive 'RequireValidShell' to module mod_auth
- dispatching directive 'TimeoutStalled' to module mod_xfer
- dispatching directive 'TimeoutLogin' to module mod_auth
- dispatching directive 'TimeoutIdle' to module mod_core
- dispatching directive 'TimeoutNoTransfer' to module mod_xfer
- dispatching directive 'Port' to module mod_core
- dispatching directive 'Umask' to module mod_core
- FS: using system read()
- dispatching directive 'MaxInstances' to module mod_core
- dispatching directive 'User' to module mod_core
- dispatching auth request "getpwnam" to module mod_auth_file
- dispatching auth request "getpwnam" to module mod_auth_unix
- dispatching directive 'Group' to module mod_core
- dispatching auth request "getgrnam" to module mod_auth_file
- dispatching auth request "getgrnam" to module mod_auth_unix
- dispatching directive 'DeferWelcome' to module mod_core
- dispatching directive 'SyslogLevel' to module mod_core
- dispatching directive 'AllowForeignAddress' to module mod_core
- dispatching directive 'MaxClients' to module mod_auth
- dispatching directive 'MaxClientsPerHost' to module mod_auth
- dispatching directive 'SystemLog' to module mod_log
- dispatching directive 'TransferLog' to module mod_core
- dispatching directive 'ExtendedLog' to module mod_log
- dispatching directive 'LogFormat' to module mod_log
- FS: using system read()
- dispatching directive 'LogFormat' to module mod_log
- dispatching directive 'LogFormat' to module mod_log
- dispatching directive 'LogFormat' to module mod_log
- dispatching directive '<Directory>' to module mod_core
- <Directory />: adding section for resolved path '/'
- dispatching directive 'AllowOverwrite' to module mod_xfer
- dispatching directive '</Directory>' to module mod_core
- dispatching directive '<Directory>' to module mod_core
- <Directory /var/ftp/ftproot/>: adding section for resolved path '/var/ftp/ftproot'
- dispatching directive 'AllowOverwrite' to module mod_xfer
- dispatching directive '<Limit>' to module mod_core
- dispatching directive 'AllowUser' to module mod_core
- dispatching directive 'DenyAll' to module mod_core
- dispatching directive '</Limit>' to module mod_core
- dispatching directive '<Limit>' to module mod_core
- dispatching directive '</Limit>' to module mod_core
- </Limit>: ignoring empty context
- dispatching directive '</Directory>' to module mod_core
- FS: using system read()
- FS: using system close()
gtw.drb -
gtw.drb - Config for DRB:
gtw.drb - /
gtw.drb - /var/ftp/ftproot
gtw.drb - Limit
gtw.drb - AllowUser
gtw.drb - DenyAll
gtw.drb - AllowOverwrite
gtw.drb - DenyFilter
gtw.drb - RequireValidShell
gtw.drb - Umask
gtw.drb - AllowForeignAddress
gtw.drb - MaxClients
gtw.drb - MaxClientsPerHost
gtw.drb - TransferLog
gtw.drb - AllowOverwrite
gtw.drb - DenyFilter
gtw.drb - RequireValidShell
gtw.drb - Umask
gtw.drb - AllowForeignAddress
gtw.drb - MaxClients
gtw.drb - MaxClientsPerHost
gtw.drb - TransferLog
gtw.drb - DefaultServer
gtw.drb - DenyFilter
gtw.drb - IdentLookups
gtw.drb - RequireValidShell
gtw.drb - TimeoutStalled
gtw.drb - TimeoutLogin
gtw.drb - TimeoutIdle
gtw.drb - TimeoutNoTransfer
gtw.drb - Umask
gtw.drb - UserID
gtw.drb - UserName
gtw.drb - GroupID
gtw.drb - GroupName
gtw.drb - DeferWelcome
gtw.drb - SyslogLevel
gtw.drb - AllowForeignAddress
gtw.drb - MaxClients
gtw.drb - MaxClientsPerHost
gtw.drb - TransferLog
gtw.drb - ExtendedLog
gtw.drb - dispatching auth request "getgroups" to module mod_auth_file
gtw.drb - dispatching auth request "getgroups" to module mod_auth_unix
gtw.drb - SETUP PRIVS at main.c:2733
gtw.drb - ROOT PRIVS at main.c:1967
gtw.drb - RELINQUISH PRIVS at main.c:1974
gtw.drb - ROOT PRIVS at main.c:2322
gtw.drb - opening scoreboard '/var/run/proftpd/proftpd.scoreboard'
gtw.drb - RELINQUISH PRIVS at main.c:2348
gtw.drb - ROOT PRIVS at inet.c:243
gtw.drb - RELINQUISH PRIVS at inet.c:259
gtw.drb - ROOT PRIVS at inet.c:322
gtw.drb - RELINQUISH PRIVS at inet.c:380
gtw.drb - ProFTPD 1.2.10 (stable) (built Tue Apr 19 13:07:37 MSD 2005) standalone mode STARTUP
gtw.drb - ROOT PRIVS at main.c:2185
gtw.drb - RELINQUISH PRIVS at main.c:2187
gtw.drb - FS: using system lstat()
gtw.drb - FS: using system lstat()
gtw.drb - ROOT PRIVS at main.c:1162
gtw.drb - RELINQUISH PRIVS at main.c:1166
gtw.drb (195.144.253.10[195.144.253.10]) - ROOT PRIVS at main.c:1011
gtw.drb (195.144.253.10[195.144.253.10]) - SETUP PRIVS at main.c:1016
gtw.drb (195.144.253.10[195.144.253.10]) - FTP session requested from unknown class
gtw.drb (195.144.253.10[195.144.253.10]) - performing module session initializations
gtw.drb (195.144.253.10[195.144.253.10]) - mod_log: opening ExtendedLog '/var/log/proftpd/proftpd.log'
gtw.drb (195.144.253.10[195.144.253.10]) - ROOT PRIVS at mod_log.c:1144
gtw.drb (195.144.253.10[195.144.253.10]) - RELINQUISH PRIVS at mod_log.c:1146
gtw.drb (195.144.253.10[195.144.253.10]) - ROOT PRIVS at mod_auth.c:132
gtw.drb (195.144.253.10[195.144.253.10]) - opening scoreboard '/var/run/proftpd/proftpd.scoreboard'
gtw.drb (195.144.253.10[195.144.253.10]) - RELINQUISH PRIVS at mod_auth.c:134
gtw.drb (195.144.253.10[195.144.253.10]) - ident lookup disabled
gtw.drb (195.144.253.10[195.144.253.10]) - connected - local : 195.131.87.157:21
gtw.drb (195.144.253.10[195.144.253.10]) - connected - remote : 195.144.253.10:8969
gtw.drb - FS: using system lstat()
gtw.drb (195.144.253.10[195.144.253.10]) - FTP session opened.
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'USER ftpuser' to mod_rewrite
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'USER ftpuser' to mod_core
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'USER ftpuser' to mod_core
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'USER ftpuser' to mod_auth
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endpwent" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endpwent" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endgrent" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endgrent" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching CMD command 'USER ftpuser' to mod_ratio
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching CMD command 'USER ftpuser' to mod_auth
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "getgroups" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "getgroups" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching LOG_CMD command 'USER ftpuser' to mod_log
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'PASS (hidden)' to mod_rewrite
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'PASS (hidden)' to mod_core
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'PASS (hidden)' to mod_core
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'PASS (hidden)' to mod_wrap
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching PRE_CMD command 'PASS (hidden)' to mod_auth
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endpwent" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endpwent" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endgrent" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endgrent" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching CMD command 'PASS (hidden)' to mod_auth
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "getgroups" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "getgroups" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "getpwnam" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "getpwnam" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "gid_name" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "gid_name" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "auth" to module mod_auth_pam
gtw.drb (195.144.253.10[195.144.253.10]) - ROOT PRIVS at mod_auth_pam.c:258
gtw.drb (195.144.253.10[195.144.253.10]) - RELINQUISH PRIVS at mod_auth_pam.c:416
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "setgrent" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "setgrent" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - ROOT PRIVS at mod_auth.c:561
gtw.drb (195.144.253.10[195.144.253.10]) - RELINQUISH PRIVS at mod_auth.c:563
gtw.drb (195.144.253.10[195.144.253.10]) - USER PRIVS 1002 at mod_auth.c:1122
gtw.drb (195.144.253.10[195.144.253.10]) - RELINQUISH PRIVS at mod_auth.c:1124
gtw.drb (195.144.253.10[195.144.253.10]) -
gtw.drb (195.144.253.10[195.144.253.10]) - Config for DRB:
gtw.drb (195.144.253.10[195.144.253.10]) - /
gtw.drb (195.144.253.10[195.144.253.10]) - /var/ftp/ftproot
gtw.drb (195.144.253.10[195.144.253.10]) - Limit
gtw.drb (195.144.253.10[195.144.253.10]) - AllowUser
gtw.drb (195.144.253.10[195.144.253.10]) - DenyAll
gtw.drb (195.144.253.10[195.144.253.10]) - AllowOverwrite
gtw.drb (195.144.253.10[195.144.253.10]) - DenyFilter
gtw.drb (195.144.253.10[195.144.253.10]) - RequireValidShell
gtw.drb (195.144.253.10[195.144.253.10]) - Umask
gtw.drb (195.144.253.10[195.144.253.10]) - AllowForeignAddress
gtw.drb (195.144.253.10[195.144.253.10]) - MaxClients
gtw.drb (195.144.253.10[195.144.253.10]) - MaxClientsPerHost
gtw.drb (195.144.253.10[195.144.253.10]) - TransferLog
gtw.drb (195.144.253.10[195.144.253.10]) - AllowOverwrite
gtw.drb (195.144.253.10[195.144.253.10]) - DenyFilter
gtw.drb (195.144.253.10[195.144.253.10]) - RequireValidShell
gtw.drb (195.144.253.10[195.144.253.10]) - Umask
gtw.drb (195.144.253.10[195.144.253.10]) - AllowForeignAddress
gtw.drb (195.144.253.10[195.144.253.10]) - MaxClients
gtw.drb (195.144.253.10[195.144.253.10]) - MaxClientsPerHost
gtw.drb (195.144.253.10[195.144.253.10]) - TransferLog
gtw.drb (195.144.253.10[195.144.253.10]) - DefaultServer
gtw.drb (195.144.253.10[195.144.253.10]) - DenyFilter
gtw.drb (195.144.253.10[195.144.253.10]) - IdentLookups
gtw.drb (195.144.253.10[195.144.253.10]) - RequireValidShell
gtw.drb (195.144.253.10[195.144.253.10]) - TimeoutStalled
gtw.drb (195.144.253.10[195.144.253.10]) - TimeoutLogin
gtw.drb (195.144.253.10[195.144.253.10]) - TimeoutIdle
gtw.drb (195.144.253.10[195.144.253.10]) - TimeoutNoTransfer
gtw.drb (195.144.253.10[195.144.253.10]) - Umask
gtw.drb (195.144.253.10[195.144.253.10]) - UserID
gtw.drb (195.144.253.10[195.144.253.10]) - UserName
gtw.drb (195.144.253.10[195.144.253.10]) - GroupID
gtw.drb (195.144.253.10[195.144.253.10]) - GroupName
gtw.drb (195.144.253.10[195.144.253.10]) - DeferWelcome
gtw.drb (195.144.253.10[195.144.253.10]) - SyslogLevel
gtw.drb (195.144.253.10[195.144.253.10]) - AllowForeignAddress
gtw.drb (195.144.253.10[195.144.253.10]) - MaxClients
gtw.drb (195.144.253.10[195.144.253.10]) - MaxClientsPerHost
gtw.drb (195.144.253.10[195.144.253.10]) - TransferLog
gtw.drb (195.144.253.10[195.144.253.10]) - ExtendedLog
gtw.drb (195.144.253.10[195.144.253.10]) - CURRENT-CLIENTS
gtw.drb (195.144.253.10[195.144.253.10]) - USER
gtw.drb (195.144.253.10[195.144.253.10]) - USER ftpuser: Login successful.
gtw.drb (195.144.253.10[195.144.253.10]) - ROOT PRIVS at mod_auth.c:1193
gtw.drb (195.144.253.10[195.144.253.10]) - opening TransferLog '/var/log/proftpd/proftpd.log'
gtw.drb (195.144.253.10[195.144.253.10]) - RELINQUISH PRIVS at mod_auth.c:1222
gtw.drb (195.144.253.10[195.144.253.10]) - ROOT PRIVS at mod_auth.c:1265
gtw.drb (195.144.253.10[195.144.253.10]) - SETUP PRIVS at mod_auth.c:1272
gtw.drb (195.144.253.10[195.144.253.10]) - ftpuser chdir("/var/ftp/ftproot"): Permission denied
gtw.drb (195.144.253.10[195.144.253.10]) - ROOT PRIVS at mod_auth_pam.c:144
gtw.drb (195.144.253.10[195.144.253.10]) - RELINQUISH PRIVS at mod_auth_pam.c:173
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endpwent" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endpwent" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endgrent" to module mod_auth_file
gtw.drb (195.144.253.10[195.144.253.10]) - dispatching auth request "endgrent" to module mod_auth_unix
gtw.drb (195.144.253.10[195.144.253.10]) - FTP session closed.
gtw.drb - FS: using system lstat()
gtw.drb - scrubbing scoreboard
gtw.drb - ROOT PRIVS at mod_core.c:130
gtw.drb - RELINQUISH PRIVS at mod_core.c:132
gtw.drb - ROOT PRIVS at mod_core.c:160
gtw.drb - RELINQUISH PRIVS at mod_core.c:189
gtw.drb - FS: using system lstat()
В клиенте ftp пишет Login incorrect