# # Virtual Hosting Server Configuration # by M.Lowes # for Frontier Internet Services Limited # (http://www.ftech.net/) # ServerName "Master Webserver" # # Spawn from inetd? # #ServerType inetd # # or maybe a standalone server... # ServerType standalone # # don't give the server banner until _after_ authentication # DeferWelcome off # # Some basic defaults # Port 21 Umask 002 TimeoutLogin 120 TimeoutIdle 600 TimeoutNoTransfer 900 TimeoutStalled 3600 # # No, I don't think we'll run as root! # User ftp Group ftp # # This is a non-customer usable name, (ie they should be connecting via www.{domain}) # not 'hostname'. Therefore let's dump them in a dummy account and wait for them to # scream. # DefaultRoot /web/Legacy/ # # Performance, let's do DNS resolution when we process the logs... # UseReverseDNS off # # Where do we put the pid files? # ScoreboardPath /var/run/proftpd # # Logging options # TransferLog /var/spool/syslog/proftpd/xferlog.legacy # # Some logging formats # LogFormat default "%h %l %u %t \"%r\" %s %b" LogFormat auth "%v [%P] %h %t \"%r\" %s" LogFormat write "%h %l %u %t \"%r\" %s %b" # # Global settings # DisplayLogin welcome.msg DisplayFirstChdir readme # # having to delete before uploading is a pain ;) # AllowOverwrite yes # # Turn off Ident lookups # IdentLookups off # # Logging # # file/dir access # ExtendedLog /var/spool/syslog/proftpd/access.log WRITE,READ write # # # Record all logins # ExtendedLog /var/spool/syslog/proftpd/auth.log AUTH auth # # Paranoia logging level.... # ##ExtendedLog /var/spool/syslog/proftpd/paranoid.log ALL default # # Deny writing to the base server... # DenyAll # -------------------------------------------- # Virtual Servers start here.... # # (Note: this is normally auto generated by a # script written in house). # -------------------------------------------- # # www.ftech.net. # This is the default server # Gets all the connections for www.{customer.domain}, # & www.ftech.net # ServerAdmin webmaster@Ftech.net ServerName "Master Webserver" MaxLoginAttempts 2 RequireValidShell no TransferLog /var/spool/syslog/proftpd/xferlog.www MaxClients 50 DefaultServer on DefaultRoot ~ !staff AllowOverwrite yes # # No quickly do we kick someone out # TimeoutLogin 120 TimeoutIdle 600 TimeoutNoTransfer 900 # -------------------------------------------- # Got a Frontpage customer who keeps breaking things???? # - stick 'em in group fpage # -------------------------------------------- # # Block them from doing anything other than reading... # DenyGroup fpage # # ditto for ftp_root if it's there... # DenyALL # # Limit by IP... # Order Allow,Deny Allow 195.200.31.220 Allow 212.32.17.0/26 Deny ALL # -------------------------------------------- # # Legacy server, left in because some people # haven't realised it's gone yet. Shove 'em into # a dummy $home # ServerAdmin webmaster@Ftech.net ServerName "Legacy Web Upload Server" MaxLoginAttempts 2 RequireValidShell no MaxClients 50 DefaultRoot ~ !staff MaxClients 2 AllowOverwrite yes TransferLog /var/spool/syslog/proftpd/xferlog.web-1 # -------------------------------------------- # # ftp.ftech.net # ServerAdmin ftpmaster@ftech.net ServerName "Frontier Internet Public FTP Server" TransferLog /ftp/xferlog/ftp.ftech.net MaxLoginAttempts 3 RequireValidShell no DefaultRoot /ftp/ftp.ftech.net AllowOverwrite yes # # Auth files.... # AuthUserFile /var/conf/ftp/authfiles/passwd.ftp.ftech.net AuthGroupFile /var/conf/ftp/authfiles/group.ftp.ftech.net # A basic anonymous configuration, no upload directories. User ftp Group ftp # We want clients to be able to login with "anonymous" as well as "ftp" UserAlias anonymous ftp RequireValidShell no # Limit the maximum number of anonymous logins MaxClients 50 # We want 'welcome.msg' displayed at login, and '.message' displayed # in each newly chdired directory. AllowAll DenyAll AllowAll DenyAll # # Limit access to the mirrors to LINX # only # Order Allow,Deny Allow .uk, .ftech.net Allow .vom.tm Deny ALL # Limit WRITE everywhere in the anonymous chroot DenyAll # ---------------------------------------------------- # Virtual ftp with anon access, but no incoming # ServerAdmin ftpmaster@foo1.com ServerName "Foo1 FTP Server" TransferLog /var/spool/syslog/xfer/ftp.foo1.com MaxLoginAttempts 3 RequireValidShell no DefaultRoot /ftp/ftp.foo1.com User foo1 Group foo1 AllowOverwrite yes # # Auth files.... # AuthUserFile /var/conf/ftp//authfiles/passwd.ftp.foo1.com AuthGroupFile /var/conf/ftp//authfiles/group.ftp.foo1.com User ftp Group ftp UserAlias anonymous ftp RequireValidShell no MaxClients 20 DenyAll # ---------------------------------------------------- # ftp.foo2.com # Anon, no incoming, some private access areas # ServerAdmin ftpmaster@mcresearch.co.uk ServerName "MC Research FTP Server" TransferLog /var/spool/syslog/xfer/ftp.foo2.com MaxLoginAttempts 3 RequireValidShell no DefaultRoot /ftp/ftp.foo2.com User foo2 Group foo2 AllowOverwrite yes # # Auth files.... # AuthUserFile /var/conf/ftp//authfiles/passwd.ftp.foo2.com AuthGroupFile /var/conf/ftp//authfiles/group.ftp.foo2.com User ftp Group ftp UserAlias anonymous ftp RequireValidShell no MaxClients 20 DenyAll DenyAll AllowUser mcres DenyAll AllowUser mcres AllowUser customer DenyAll # ---------------------------------------------------- # ftp.foo3.com # # ServerAdmin ftpmaster@farrukh.co.uk ServerName "Farrukh FTP Archive" TransferLog /var/spool/syslog/xfer/ftp.foo3.com MaxLoginAttempts 3 RequireValidShell no DefaultRoot /web/farrukh2/ftp_root User farrukh2 Group farrukh2 AllowOverwrite yes # # Auth files.... # AuthUserFile /var/conf/ftp//authfiles/passwd.ftp.foo3.com AuthGroupFile /var/conf/ftp//authfiles/group.ftp.foo3.com User ftp Group ftp UserAlias anonymous ftp RequireValidShell no MaxClients 20 AllowAll DenyAll AllowAll AllowAll DenyAll AllowAll # # block access to the secure areas by anon... # DenyAll DenyAll DenyAll # # define user based access # AllowUser farrukh AllowUser fguest DenyAll AllowUser farrukh AllowUser fgroup DenyAll # ---------------------------------------------------- # ftp.foo4.com # anon, with incoming upload # ServerAdmin ftpmaster@teamwork.co.uk ServerName "Teamwork FTP Server" TransferLog /var/spool/syslog/xfer/ftp.foo4.com MaxLoginAttempts 3 RequireValidShell no DefaultRoot /ftp/ftp.foo4.com User foo4 Group foo4 AllowOverwrite yes # # Auth files.... # AuthUserFile /var/conf/ftp//authfiles/passwd.ftp.foo4.com AuthGroupFile /var/conf/ftp//authfiles/group.ftp.foo4.com User ftp Group ftp UserAlias anonymous ftp RequireValidShell no MaxClients 20 AllowAll DenyAll AllowAll AllowAll DenyAll AllowAll DenyAll # ---------------------------------------------------- # The end.... # ----------------------------------------------------