importing

vsftpd/virtual/denied_users

@@ -0,0 +1,30 @@
+adm
+bin
+daemon
+dbus
+ftp
+games
+gopher
+haldaemon
+halt
+lighttpd
+lp
+mail
+mailnull
+memcached
+news
+nfsnobody
+nobody
+ntp
+operator
+pcap
+postfix
+root
+rpc
+rpcuser
+shutdown
+smmsp
+sshd
+sync
+uucp
+vcsa

vsftpd/virtual/ftpusers

@@ -0,0 +1,15 @@
+# Users that are not allowed to login via ftp
+root
+bin
+daemon
+adm
+lp
+sync
+shutdown
+halt
+mail
+news
+uucp
+operator
+games
+nobody

vsftpd/virtual/pam.ftp

@@ -0,0 +1,2 @@
+auth    required pam_userdb.so db=/etc/vsftpd/accounts
+account required pam_userdb.so db=/etc/vsftpd/accounts

vsftpd/virtual/user_list

@@ -0,0 +1,19 @@
+# If userlist_deny=NO, only allow users in this file
+# If userlist_deny=YES (default), never allow users in this file, and
+# do not even prompt for a password.
+# Note that the default vsftpd pam config also checks /etc/vsftpd/ftpusers
+# for users that are denied.
+root
+bin
+daemon
+adm
+lp
+sync
+shutdown
+halt
+mail
+news
+uucp
+operator
+games
+nobody

vsftpd/virtual/virtualuser.tpl

@@ -0,0 +1,4 @@
+dirlist_enable=YES
+download_enable=YES
+local_root=/var/ftp/virtual_users/USERNAME
+write_enable=YES

vsftpd/virtual/vsftpd.conf

@@ -0,0 +1,38 @@
+anon_world_readable_only=NO
+anonymous_enable=NO
+chroot_local_user=YES
+guest_enable=YES
+guest_username=ftp
+hide_ids=YES
+listen=YES
+local_enable=YES
+max_clients=100
+max_per_ip=2
+nopriv_user=ftp
+pam_service_name=ftp
+pasv_max_port=65535
+pasv_min_port=64000
+session_support=NO
+use_localtime=YES
+user_config_dir=/etc/vsftpd/users
+userlist_enable=YES
+userlist_file=/etc/vsftpd/denied_users
+xferlog_enable=YES
+anon_umask=022
+local_umask=022
+async_abor_enable=YES
+connect_from_port_20=YES
+dirlist_enable=NO
+download_enable=NO
+virtual_use_local_privs=YES
+#
+# TLS Configuration
+#
+ssl_enable=YES
+allow_anon_ssl=NO
+force_local_data_ssl=NO
+force_local_logins_ssl=NO
+ssl_tlsv1=YES
+ssl_sslv2=NO
+ssl_sslv3=NO
+rsa_cert_file=/etc/vsftpd/vsftpd.pem