  Ftp server


  11..  PPrriinncciipplleess

  FTP stands for _F_i_l_e _T_r_a_n_s_f_e_r _P_r_o_t_o_c_o_l. It is widely used to publish
  file over the internet.


  22..  BBaassiicc ccoonnffiigguurraattiioonn

  The FTP protocol is fairly old (more than 20 years) and many features
  were added. The wuftpd server supports quite a few of those. Today,
  there are many other file sharing protocol out there (HTTP + dynamic
  content) often offering more control and ease of use for clients.

  In general, ftp is used for basic file sharing. We will describe here
  the basic settings supported by this module. You may want to consult
  the man page _f_t_p_a_c_c_e_s_s to learn more.


  22..11..  MMiisscc


  22..11..11..  EEmmaaiill ooff aaddmmiinn

  You enter the email address of the administrator responsible for this
  server. This information is printed as part of the banner file. You
  must write one and include the magic sequence %E. The sequence will be
  replaced by the value entered in this field.


  22..11..22..  GGuueesstt ggrroouuppss

  You enter a list of user groups considered guest. wuftpd has three
  independant settings for normal, guest and anonymous users.  You may
  enter zero of more groups here separated by spaces.


  22..11..33..  BBaannnneerr ffiillee

  This is the path of a text file (ASCII) presented everytime a user log
  in. You can edit the file using the _e_d_i_t _b_a_n_n_e_r button.


  22..11..44..  SShhuuttddoowwnn mmeessssaaggee

  This specifies the path of a control file.  If the file exists,  the
  server will check the file regularly to see if the server is going to
  be shut down.  If a shutdown is planned, the user  is notified, new
  connections are denied after a specified time before shutdown  and
  current  connec tions  are  dropped  at a specified time before shut
  down.

  The file is structured as follows:


               <year> <month> <day> <hour> <minute> <deny_offset> <disc_offset> <text>


  where

  +o  <year> is any year > 1970.

  +o  <month> 0-11

  +o  <hour> 0-23

  +o  <minute> 0-59

  +o  <deny_offset>  and  <disc_offset>  are the offsets in HHMM format
     before the shutdown time that new connections will be denied and
     existing connections will be disconnected.

  +o  <text> follows the normal rules for any message and banner.  with
     the following additional magic cookies available:


  +o  %s time system is going to shut down.

  +o  %r time new connections will be denied.

  +o  %d time current connections will be dropped.


     All times are in the form: ddd MMM DD hh:mm:ss  YYYY.

  The external program _f_t_p_s_h_u_t_(_8_) can be used to  auto mate the process
  of generating this file.


  22..11..55..  AAllllooww aannoonnyymmoouuss aacccceessss

  You can enable or disabled anonymous access using this check-box.  If
  you enable anonymous access, make sure the anonftp package is
  installed.


  22..22..  CCoonnttrrooll

  For the various access mode (user,guest,anonymous), you can limit the
  features available. Note that the ftp server generally execute with
  the same privilege as the user connected, so even if this user has a
  given privilege, the operating system may still limit his ability to
  perform the operation. Said differently, the FTP server may allow the
  user to _t_r_y or not an operation, but the operating system as the final
  say about the result.


  22..22..11..  MMaayy rreeqquueesstt ccoommpprreesssseedd ffiillee

  A user may request a file with the extension .Z or .gz. If this file
  does not exist, but the corresponding file without the extension do
  exist, the server will compress it on the fly.


  22..22..22..  MMaayy rreeqquueesstt ttaarr ffiilleess

  If a tar file (with extension .tar) is request, but only a
  corresponding directory exist, a TAR is produced on the fly. This
  allows the users to grab complete directories in a single command.


  22..22..33..  MMaayy cchhmmoodd ffiilleess

  The user is allowed to change the permissions of a file.


  22..22..44..  MMaayy ddeelleettee ffiilleess

  The user is allowed to delete files.


  22..22..55..  MMaayy oovveerrwwrriittee ffiilleess

  The user is allowed to overwrite existing files.


  22..22..66..  MMaayy rreennaammee ffiilleess

  The user is allowed to rename existing files.


  22..22..77..  LLoogg iinnbboouunndd ttrraannssffeerrss

  For every file received, an entry is written in the transfer log.  You
  can disable this behavior.


  22..22..88..  LLoogg oouuttbboouunndd ttrraannssffeerrss

  For every file transmitted, an entry is written in the transfer log.
  You can disable this behavior.


  22..33..  TTiimmeeoouuttss

  You control various timeout for the various operations done during a
  session.


  22..33..11..  AAcccceepptt ccoonnnneeccttiioonn ((ddeeffaauulltt 112200 sseeccoonnddss))

  How  long  the  daemon will wait for an incoming (PASV) data
  connection.


  22..33..22..  PPOORRTT ccoonnnneeccttiioonn  ((ddeeffaauulltt  112200  sseeccoonnddss))

  How long the daemon will wait attempting to establish an outgoing
  (PORT) data  connection.   This effects the actual connetion attempt.
  The daemon makes several attempts, sleeping a while between each,
  before completely giving up.


  22..33..33..  DDaattaa ttrraannssffeerr ((ddeeffaauulltt 11220000 sseeccoonnddss))

  How long the daemon will wait for some activity on the data
  connection.   You should  keep  this long because the remote client
  may have a slow link and there can be quite a bit of data queued for
  the client.


  22..33..44..  DDeeffaauulltt iiddllee ttiimmee  ((ddeeffaauulltt 990000 sseeccoonnddss))

  How long the daemon will wait for the next command.  The default can
  also  be overridden  by  the  command  line  -a  option.  This access
  clause overrides both.


  22..33..55..  MMaaxxiimmuumm iiddllee ttiimmee ((ddeeffaauulltt 11220000 sseeccoonnddss))

  The SITE IDLE command allows  the remote client to establish a higher
  value for the idle timeout.  This sets the upper limit  the client may
  request.  The default can also be overrid den by the  command  line
  -A  option.   This  access clause overrides both.


  22..33..66..  AAuutthh//IIddeenntt  ((ddeeffaauulltt  1100  sseeccoonnddss))

  The maximum time the daemon allows for the entire RFC931 (AUTH/ident)
  con versation.   Setting this to zero (0) completely dis ables the
  daemon's use of this protocol.  The  infor mation  obtained via RFC931
  is recorded in the system logs and not actually used in any
  authentication.


  33..  VViirrttuuaall hhoossttss

  One Linux server may publish file for several logical host at once.
  From a client standpoint, there are several independant server.


  44..  TTrraannssffeerr llooggss

  You can view reports for the activity on the main ftp server and each
  virtual host.