我的ftp为什么不能匿名登陆？

zjracyx

我的ftp为什么不能匿名登陆？

大虾们，搞不定啊！
proftpd.conf 文件
# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use. It establishes a single server
# and a single anonymous login. It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.

ServerName "ProFTPD Default Installation"
ServerType standalone
DefaultServer on

# Allow FTP resuming.
# Remember to set to off if you have an incoming ftp for upload.
AllowStoreRestart on

# Port 21 is the standard FTP port.
Port 21

# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask 022

# To prevent DoS attacks, set the maximum number of child processes
# to 30. If you need to allow more than 30 concurrent connections
# at once, simply increase this value. Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd).
MaxInstances 30

# Set the user and group under which the server will run.
User nobody
Group nogroup

# Normally, we want files to be overwriteable.
<Directory />
AllowOverwrite on
</Directory>

# Needed for NIS.
PersistentPasswd off

# Default root can be used to put users in a chroot environment.
# As an example if you have a user foo and you want to put foo in /home/foo
# chroot environment you would do this:
#
# DefaultRoot /home/foo foo


#<drakwizard>
<Global>
<Limit LOGIN>
Order allow,deny
Allow from all
Deny from all
</Limit>
</Global>
#</drakwizard>
Include /etc/proftpd-anonymous.conf

proftpd-anonymous.conf 文件
# A basic anonymous configuration, no upload directories.
<Anonymous ~ftp>
User nobody
Group nogroup
# We want clients to be able to login with "anonymous" as well as "ftp"
UserAlias anonymous nobody

# Limit the maximum number of anonymous logins
MaxClients 10

# Don't make it require a valid password or shell.
RequireValidShell off
AnonRequirePassword off

# We want 'welcome.msg' displayed at login, and '.message' displayed
# in each newly chdired directory.
DisplayLogin welcome.msg
DisplayFirstChdir .message

# Limit WRITE everywhere in the anonymous chroot
<Limit WRITE>
DenyAll
</Limit>
#设置匿名用户只有读取权限
<Limit READ>
AllowAll
</Limit>
</Anonymous>




__________________
机器配置：
赛杨550(overlock)
技嘉6BXC 440BX
昆腾火球 8.4
帝盟Viper 330 128ZX
帝盟S90 AU8820
128M HY
MAG 700e

/dev/hda1 4.7G /
/dev/hda6 3.0G /date
OS:Mandrake 9.1

  

980501427

你的配置:"UserAlias anonymous nobody"

看看ftpuser文件里是否限制了nobody登陆.一般默认限制root,bin,nobody等用户登陆.

zjracyx

几个菜鸟问题
(1) 系统里的nobody和ftp用户是怎么来的？nobody是系统自带的吗？ftp是安装了proftpd后软件自动增加的吗？

(2) UserAlias anonymous ftp后，是否也应该把
# A basic anonymous configuration, no upload directories.
<Anonymous ~ftp>
User nobody
Group nogroup
和
# Set the user and group under which the server will run.
User nobody
Group nogroup
这两个地方的nobody用户改成ftp?是否这样一来nobody用户就没有用了，我可以把它删除了？

(3) 论坛上很多文章说要
# Set the user and group under which the server will run.
User nobody
Group nobody
我想问nobody用户应该是nogroup组里的,为什么要改成nobody？而且系统里没有预设nobody这样的组？

(4) 我的ftp用户的shell是/bin/false，那不是就不能登陆了？


__________________
机器配置：
赛杨550(overlock)
技嘉6BXC 440BX
昆腾火球 8.4
帝盟Viper 330 128ZX
帝盟S90 AU8820
128M HY
MAG 700e

/dev/hda1 4.7G /
/dev/hda6 3.0G /date
OS:Mandrake 9.1

980501427

呵呵.那几个用户是自己加的,没有也没关系.
为了保持unix系列兼容,这几个用户还是有必要存在的,否则有的软件安装时无法确定权限.而你新加的用户可能id和他们一样，这样那些文件的属主就是你新加的用户,对于系统是不安全的.
nobody用户和nobody组只是名称,看看你的/etc/passwd和/etc/group里是不是有这样的用户和组.你想设成nogroup也行,请配置好/etc/passwd和/etc/group.
/bin/false不是一个合法的shell,是避免登陆的.