diff --git a/templates/misc/configfiles/freebsd/pure-ftpd/usr_local_etc_pure-ftpd.conf b/templates/misc/configfiles/freebsd/pure-ftpd/usr_local_etc_pure-ftpd.conf new file mode 100644 index 00000000..0f5d2c1d --- /dev/null +++ b/templates/misc/configfiles/freebsd/pure-ftpd/usr_local_etc_pure-ftpd.conf @@ -0,0 +1,63 @@ +############################################################ +# Configuration file for pure-ftpd wrappers # +############################################################ +BrokenClientsCompatibility no +MaxClientsNumber 30 +Daemonize yes +MaxClientsPerIP 8 +VerboseLog no +DisplayDotFiles yes +AnonymousOnly no +NoAnonymous yes +SyslogFacility ftp +DontResolve yes +MaxIdleTime 10 +MySQLConfigFile /usr/local/etc/pureftpd-mysql.conf +UnixAuthentication yes +LimitRecursion 10000 8 +AnonymousCanCreateDirs no +MaxLoad 4 +# Port range for passive connections replies. - for firewalling. +# PassivePortRange 30000 50000 +# Force an IP address in PASV/EPSV/SPSV replies. - for NAT. +# Symbolic host names are also accepted for gateways with dynamic IP addresses. +# ForcePassiveIP 192.168.0.1 +AntiWarez yes +# IP address/port to listen to (default=all IP and port 21). +# Bind 127.0.0.1,21 +# Maximum bandwidth for *all* users (including anonymous) in KB/s +# Use AnonymousBandwidth *or* UserBandwidth, both makes no sense. +UserBandwidth 512 +# File creation mask. : - 177:077 if you feel paranoid. +Umask 133:022 +# Minimum UID for an authenticated user to log in. +MinUID 100 +# Allow FXP transfers for authenticated users. +AllowUserFXP no +# Allow anonymous FXP for anonymous and non-anonymous users. +AllowAnonymousFXP no +ProhibitDotFilesWrite no +ProhibitDotFilesRead no +AutoRename no +AnonymousCantUpload yes +# Disallow the CHMOD command. Users can't change perms of their files. +#NoChmod yes +# Allow users to resume and upload files, but *NOT* to delete them. +#KeepAllFiles yes +MaxDiskUsage 90 +CustomerProof yes +# This option can accept three values : +# 0 : disable SSL/TLS encryption layer (default). +# 1 : accept both traditional and encrypted sessions. +# 2 : refuse connections that don't use SSL/TLS security mechanisms, +# including anonymous sessions. +# Do _not_ uncomment this blindly. Be sure that : +# 1) Your server has been compiled with SSL/TLS support (--with-tls), +# 2) A valid certificate is in place, +# 3) Only compatible clients will log in. +# TLS 1 +# List of ciphers that will be accepted for SSL/TLS connections +# Prefix with -S: in order to totally disable SSL but not TLS. +# TLSCipherSuite HIGH:MEDIUM:+TLSv1:!SSLv2:+SSLv3 +# IPV4Only yes +# IPV6Only yes