全部博文(191)
分类:
2009-07-09 13:39:59
声明:本文档是我自己试着翻译的,难免会有错误,请高人指正,请勿以这里的翻译为准。
NAME
vsftpd.conf - config file for vsftpd
vsftpd服务器的配置文件
FORMAT
The format of vsftpd.conf is very simple. Each line is either a comment
or a directive. Comment lines start with a # and are ignored. A direc-
tive line has the format:
格式
Vsftpd.conf的格式很简单,每一行既有解释也有指令,以#开始的行是解释,且是被忽略的。指令的行是这样的:
option=value
It is important to note that it is an error to put any space between
the option, = and value.
Each setting has a compiled in default which may be modified in the
configuration file.
选项=值
很重要的一点, 在选项,= 和值之间有任何空格是错误的。
在配置文件里每一个默认的值是可以被被编辑和修改的。
BOOLEAN OPTIONS
Below is a list of boolean options. The value for a boolean option may
be set to YES or NO.
布尔选项
下面列出得是布尔选项,布尔选项值能被设置成YES或NO
allow_anon_ssl
Only applies if ssl_enable is active. If set to YES, anonymous
users will be allowed to use secured SSL connections.
Default: NO
allow_anon_ssl
只应用于ssl_enable被激活的时候,如果设置为YES,匿名用户将使用安全通道ssl访问vstpd服务器(貌似没必要)
默认:NO
anon_mkdir_write_enable
If set to YES, anonymous users will be permitted to create new
directories under certain conditions. For this to work, the
option write_enable must be activated, and the anonymous ftp
user must have write permission on the parent directory.
Default: NO
anon_mkdir_write_enable
如果被设置成YES,匿名用户在一定的条件下允许建立目录;但是选项write_enable必须被启用,并且必须在父目录下有写的权限。
默认:NO
anon_other_write_enable
If set to YES, anonymous users will be permitted to perform
write operations other than upload and create directory, such as
deletion and renaming. This is generally not recommended but
included for completeness.
Default: NO
anon_other_write_enabe
如果设成YES,匿名用户将能上传文件,能建立,删除,改名目录,因为包括了完全权限,一般不推荐这么做。
默认:NO
anon_upload_enable
If set to YES, anonymous users will be permitted to upload files
under certain conditions. For this to work, the option
write_enable must be activated, and the anonymous ftp user must
have write permission on desired upload locations. This setting
is also required for virtual users to upload; by default, vir-
tual users are treated with anonymous (i.e. maximally
restricted)privilege.
Default: NO
anon_upload_enable
如果设成YES,匿名用户在一定的条件下允许上传文件,选项write_enable必须被启用,上传的位置,匿名用户必须有写的权限,也适合虚拟用户的上传的设置,默认地,虚拟用户被看成匿名用户的特权模式
默认:NO
anon_world_readable_only
When enabled, anonymous users will only be allowed to download
files which are world readable. This is recognising that the ftp
user may own files, especially in the presence of uploads.
Default: YES
anon_world_readable_only
启用的时候,匿名用户被允许下载可阅读文档,考虑到匿名用户可能有自己的文件,特别是在下载的场合
默认:NO
anonymous_enable
Controls whether anonymous logins are permitted or not. If
enabled, both the usernames ftp and anonymous are recognised as
anonymous logins.
Default: YES
anonymouse_enable
控制是否允许匿名用户登录,如果启用,匿名账户使用ftp或anonymous来登入ftp服务器
默认:YES
ascii_download_enable
When enabled, ASCII mode data transfers will be honoured on
downloads.
Default: NO
ascii_download_enable
启用的时候,将使用ASCII模式下载文件
默认:NO
async_abor_enable
When enabled, a special FTP command known as "async ABOR" will
be enabled. Only ill advised FTP clients will use this feature.
Additionally, this feature is awkward to handle, so it is dis-
abled by default. Unfortunately, some FTP clients will hang when
cancelling a transfer unless this feature is available, so you
may wish to enable it.
Default: NO
Async_abor_enable
启用的时候,一个指定的被称为async ABOR 的FTP命令将被使用,怀有恶意的ftp客户端可以使用这个特征;另外,这个特征很难处理,所以默认是禁止的。不幸的是,除非这个特征是可用的,某些FTP客户端正在取消的时候将被挂起。
默认:NO
background
When enabled, and vsftpd is started in "listen" mode, vsftpd
will background the listener process. i.e. control will immedi-
ately be returned to the shell which launched vsftpd.
Default: YES
Background
在启用的时候,vsftpd服务器是处于标准的独立模式,vsftpd 将在后台侦听这些进程,将立刻控制返回到发出vftpd进程的shell.
默认:NO
check_shell
Note! This option only has an effect for non-PAM builds of
vsftpd. If disabled, vsftpd will not check /etc/shells for a
valid user shell for local logins.
Default: YES
Check_shell
注意!这个选项仅仅对没有PAM验证的vftpd有效,vsftpd服务将不再在/etc/shells检查这个有限用户的登录shell
chmod_enable
When enables, allows use of the SITE CHMOD command. NOTE! This
only applies to local users. Anonymous users never get to use
SITE CHMOD.
Default: YES
chmod_enable
启用的时候,允许用户在ftp>提示符下使用chmod命令。注意!仅仅适用用于本地用户。匿名用户绝不允许这样。
默认:YES
chown_uploads
If enabled, all anonymously uploaded files will have the owner-
ship changed to the user specified in the setting chown_user-
name. This is useful from an administrative, and perhaps secu-
rity, standpoint.
Default: NO
chown_uploads
如果被启用,所有匿名用户上传的文件的所有权限将变成在chown_username
指定的用户。是管理上的用途,或许是为了安全
默认:NO
chroot_list_enable
If activated, you may provide a list of local users who are
placed in a chroot() jail in their home directory upon login.
The meaning is slightly different if chroot_local_user is set to
YES. In this case, the list becomes a list of users which are
NOT to be placed in a chroot() jail. By default, the file con-
taining this list is /etc/vsftpd/chroot_list, but you may over-
ride this with the chroot_list_file setting.
Default: NO
chroot_list_enable
如果被激活,在登陆的时候,你可以提供一份本地用户的名单,将她们禁锢在她们自己的宿主目录。如果chroot_local_user被设置为YES,有微弱的差别。在这个事件中,这个文件列表的用户将不在禁锢之列。默认地,这个文件列表在/etc/vsftpd/chroot_list目录下,但你可以使用chroot_list_file的设置来覆盖他。
默认:NO
1:如果只激活chroot_local_user=YES ,那么所有的本地用户都被禁锢在家目录里(有没有这个文件没有关系:chroot_list_file=/etc/vsftpd/chroot_list)
2:如果只激活chroot_list_enable=YES,那么只有chroot_list_file=/etc/vsftpd/
chroot_list文件列表的本地用户被禁锢在家目录里。
3:如果同时激活chroot_local_user=YES,chroot_list_enable=YES,那么文件列表chroot_list_file=/etc/vsftpd/chroot_list的用户将不被禁锢!
4:其实开启第二条就可以了。
chroot_local_user
If set to YES, local users will be (by default) placed in a
chroot() jail in their home directory after login. Warning:
This option has security implications, especially if the users
have upload permission, or shell access. Only enable if you know
what you are doing. Note that these security implications are
not vsftpd specific. They apply to all FTP daemons which offer
to put local users in chroot() jails.
Default: NO
chroot_local_user
如果设置为YES,登入后,默认地,本地用户将被禁锢在宿主目录里面。有一个警告:这个选项暗示了安全,尤其是用户有登陆shell,或者上传的权限的时候。仅仅显示你知道你自己正在做什么.值得注意的是,这个安全的暗示不只是vsftpd进程所独有的。所有的其他的FTP daenmons都提供这种本地用户的禁锢。
默认:NO
connect_from_port_20
This controls whether PORT style data connections use port 20
(ftp-data) on the server machine. For security reasons, some
clients may insist that this is the case. Conversely, disabling
this option enables vsftpd to run with slightly less privilege.
Default: NO (but the sample config file enables it)
chroot_from_port_20
在FTP服务器上面数字端口是否是20端口,一些安全的原因,某些ftp客户端坚决要求这个事件。转化这个使vsftpd运行在很少特权上的选项的劣势。
默认:NO(但是同样的配置文件是启用了的)
deny_email_enable
If activated, you may provide a list of anonymous password e-
mail responses which cause login to be denied. By default, the
file containing this list is /etc/vsftpd/banned_emails, but you
may override this with the banned_email_file setting.
Default: NO
deny_email_enable
如果被激活,当匿名用户登陆被拒绝的时候,你可能要使用邮件来作为匿名用户的登录密码来响应。默认地,这个文件列表包含在/etc/vsftpd/bannd_
emails里.你也看使用banned_email_file的设置来启用它。
(必须激活bannd_email_file=/etc/vsftpd/bannd_emails)
默认:NO
dirlist_enable
If set to NO, all directory list commands will give permission
denied.
Default: YES
dirlist_enable
如果设置NO,登入FTP服务器之后,所有的列举目录的命令被拒绝访问
默认:YES
dirmessage_enable
If enabled, users of the FTP server can be shown messages when
they first enter a new directory. By default, a directory is
scanned for the file .message, but that may be overridden with
the configuration setting message_file.
Default: NO (but the sample config file enables it)
dirmessage_enable
如果启用,当用户第一次进入一个新目录的时候会显示给用户,默认地,浏览目录看是否有.message文件,但 很有可能配置设置了message_file文件。
默认:NO(但是简单的配置文件启用了)
*****************请继续关注后续的翻译**********************
