# A standard proftpd.conf
# http://www.rdrs.net/document/
#
# don't forget..
# 1. symlinks don't work in a chrooted enviroment use:
#    mount -v -o bind /my/path/to/content /copy/of/content
# 2. to update your logrotator..
# 3. user `guest' is a system user, has a /no/login shell, 
#    homedir is /home/ftp/
# 4. make sure your firwall settings are ok for passive ftp, and secure..
#
##########
# basic server settings
ServerName		"foo"
ServerType		standalone
ServerIdent             on "Welcome..., your pressence is logged"
AccessGrantMsg          "Ok %u, you have GUEST access-rights."
AccessDenyMsg           "Access for %u has been denied.."
DeferWelcome            on
MultilineRFC2228        on
User                    guest
Group                   guest
Umask			022
DefaultServer           on
IdentLookups            off
DisplayLogin            welcome.msg
# DisplayFirstChdir       .message
LsDefaultOptions        "-l"
SystemLog               /var/log/proftpd/system.log all
ExtendedLog             /var/log/proftpd/auth.log auth
TransferLog             /var/log/proftpd/xferlog.log

#########
# basic connection settings
TimeoutNoTransfer		300
TimeoutStalled			300
TimeoutIdle			600
AllowRetrieveRestart            on
AllowStoreRestart               on
Port				21
# rdr/nat from firewall.. IANA 49152-65535
PassivePorts                    49152 65535
UseReverseDNS                   off
MasqueradeAddress               88.26.134.16 
# works only when run from inetd
# MaxInstances			5
MaxClientsPerHost               1 "551 One connection per IP"
MaxClients                      3 "550 Too Many Users. max = %m"
# bandwith, user download prox 19.5kb p/s
RateReadBPS                     20000
# RateWriteBPS                  250000
DefaultTransferMode             binary

##########
# basic security
DefaultRoot			/home/ftp/
RequireValidShell               off
ShowDotFiles                    off
ShowSymlinks			off
AllowOverwrite                  off
# deny root login
RootLogin                       off
# deny users listed in /etc/ftpusers
UseFtpUsers                     on

##########
# basic quota's ...
# Quotas                        on
# Set default to 1kb
# DefaultQuota                  1024
# LeechRatioMsg                 "Please upload.. as well as download.."
# delete violated [file] quota..
# QuotaType                     hard

##########
# Account for user `guest'. Only if they know the password for user `guest'.
<Anonymous ~guest>
 AnonRequirePassword            on
 user			        guest
 group			        guest
 # hide files owned by root
 HideUser			root
 HideGroup       		root

 # restrict users from writing data
 <Directory *>
  <Limit WRITE>
   DenyAll
  </Limit>
 </Directory>

 # Only allow writes to the `/home/ftp/upload' directory
 <Directory upload/*>
  <Limit WRITE>
   DenyAll
  </Limit>
  <Limit STOR>
   AllowAll
  </Limit>
 </Directory>
</Anonymous>