VSFTPD+mysql+虚拟用户权限 配置手册
[root@server vsftpd-2.0.6]# tar -jxvf vsftpd-2.0.6.tar.gz -C /usr/src/
[root@server vsftpd-2.0.6]# cd /usr/src/vsftpd-2.0.6/
[root@server vsftpd-2.0.6]# make
[root@server vsftpd-2.0.6]# make install
[root@server vsftpd-2.0.6]# useradd nobody
[root@server vsftpd-2.0.6]# mkdir /usr/share/empty
[root@server vsftpd-2.0.6]# mkdir /var/ftp
[root@server vsftpd-2.0.6]# useradd -d /var/ftp ftp
[root@server vsftpd-2.0.6]# cp vsftpd.conf /etc/vsftpd.conf
[root@server vsftpd-2.0.6]# cp RedHat/vsftpd.pam /etc/pam.d/ftp
[root@server vsftpd-2.0.6]# useradd vsftpdguest
[root@server vsftpd-2.0.6]# vi /etc/vsftpd.conf
-------------------------------------------------------------------------------------------
listen=YES
guest_enable=YES
guest_username=vsftpdguest
------------四、建库文件
1、mysql
2、create database vsftpd;
3、use vsftpd;
4、create table users (id int AUTO_INCREMENT NOT NULL,name char(16) binary NOT NULL,passwd char(48) binary NOT NULL,primary key(id));
5、create table logs (msg varchar(255), user char(16), pid int, host char(32), rhost char(32), logtime timestamp );
6、quit
7、mysql
8、grant select on vsftpd.users to identified by '123456';
grant insert on vsftpd.logs to identified by '123456';
9、use vsftpd
10、insert into users (name,passwd) values('tom','foo');
insert into users (name,passwd) values('jerry','bar');
11、select * from users;
如果能看到表内容就表示正常了。
-----------------------
[root@server ~]# tar -zxvf pam_mysql-0.7RC1.tar.gz -C /usr/src/
[root@server pam_mysql-0.7RC1]# cd /usr/src/pam_mysql-0.7RC1/
[root@server pam_mysql-0.7RC1]# ./configure --with-mysql=/usr/local/mysql --with-openssl=/usr/local/ssl
[root@server pam_mysql-0.7RC1]# make
[root@server pam_mysql-0.7RC1]# make install
[root@server pam_mysql-0.7RC1]# cp /usr/lib/security/pam_mysql.so /lib/security/
[root@server pam_mysql-0.7RC1]# vi /etc/pam.d/ftp
-----------------
auth required /lib/security/pam_mysql.so user=vsftpguest passwd=123456 host=localhost db=vsftpd table=users usercolumn=name passwdcolumn=passwd crypt=0 sqllog=1 logtable=logs logmsgcolumn=msg logusercolumn=user logpidcolumn=pid loghostcolumn=host logrhostcolumn=rhost logtimecolumn=logtime verbose=1
account required /lib/security/pam_mysql.so user=vsftpguest passwd=123456 host=localhost db=vsftpd table=users usercolumn=name passwdcolumn=passwd crypt=0 sqllog=1 logtable=logs logmsgcolumn=msg logusercolumn=user logpidcolumn=pid loghostcolumn=host logrhostcolumn=rhost logtimecolumn=logtime verbose=1
------------------------
[root@server pam_mysql-0.7RC1]# chown vsftpdguest:vsftpdguest /home/vsftpdguest/
[root@server ~]# vi /etc/vsftpd.conf
-----------------------
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
anon_upload_enable=YES
anon_mkdir_write_enable=YES
anon_other_write_enable=YES
chroot_local_user=YES
guest_enable=YES
guest_username=vsftpdguest
listen=YES
listen_port=222
connect_from_port_20=YES
pasv_enable=YES
pasv_min_port=30000
pasv_max_port=30999
anon_world_readable_only=NO
virtual_use_local_privs=YES
pam_service_name=ftp
#user_config_dir=/etc/vsftpd_user_config(单独用户目录和权限控制)
----***-----
[root@server]# cd /etc/vsftpd_user_config/
[root@server vsftpd_user_config]# ls
1 gzgi han tom--------
[root@server vsftpd_user_config]# more gzgi
write_enable=NO
local_root=/home/tom
-----------------*****------------
user_sub_token=$USER
local_root=/home/$USER
max_clients=50
max_per_ip=2
anon_max_rate=51200
local_max_rate=51200
dirmessage_enable=YES
xferlog_enable=YES
----------------------------------------------------
阅读(2185) | 评论(0) | 转发(0) |
