55 lines
1.2 KiB
Cheetah
55 lines
1.2 KiB
Cheetah
Include /etc/proftpd/modules.d/*.conf
|
|
|
|
ServerName "{{getenv "SERVER_NAME"}}"
|
|
ServerType standalone
|
|
DefaultServer on
|
|
Port 22
|
|
UseIPv6 off
|
|
Umask 006 007
|
|
MaxInstances 30
|
|
User proftpd
|
|
Group proftpd
|
|
DefaultRoot /var/lib/ftp/data
|
|
DefaultChdir /var/lib/ftp/data
|
|
AllowOverwrite on
|
|
RequireValidShell off
|
|
WtmpLog off
|
|
|
|
<Limit SITE_CHMOD>
|
|
DenyAll
|
|
</Limit>
|
|
|
|
{{if (getenv "STATIC_USER")}}
|
|
AuthUserFile /etc/proftpd/passwd
|
|
{{end}}
|
|
|
|
<IfModule mod_sftp.c>
|
|
SFTPEngine on
|
|
SFTPAuthMethods password
|
|
SFTPDHParamFile /etc/proftpd/keys/dhparams.pem
|
|
SFTPHostKey /etc/proftpd/keys/ssh_rsa_key
|
|
SFTPOptions IgnoreSCPUploadPerms IgnoreSFTPUploadPerms
|
|
</IfModule>
|
|
|
|
{{if (getenv "LDAP_URI")}}
|
|
<IfModule mod_ldap.c>
|
|
AuthOrder mod_ldap.c
|
|
|
|
LDAPAttr uid cn
|
|
|
|
LDAPServer {{getenv "LDAP_URI"}}
|
|
LDAPUseTLS {{getenv "LDAP_USE_TLS" "on"}}
|
|
LDAPAuthBinds {{getenv "LDAP_USE_AUTH_BIND" "on"}}
|
|
LDAPBindDN "{{getenv "LDAP_BIND_DN"}}" {{getenv "LDAP_BIND_PASSWORD"}}
|
|
|
|
LDAPUsers {{getenv "LDAP_BASE"}} "{{getenv "LDAP_FILTER"}}"
|
|
LDAPDefaultUID 101
|
|
LDAPDefaultGID 2222
|
|
LDAPForceDefaultUID on
|
|
LDAPForceDefaultGID on
|
|
LDAPGenerateHomedir on
|
|
LDAPGenerateHomedirPrefix /var/lib/ftp/data
|
|
LDAPForceGeneratedHomedir on
|
|
</IfModule>
|
|
{{end}}
|