Version information
released Jan 17th 2021
This version is compatible with:
- Puppet Enterprise 2023.2.x, 2023.1.x, 2023.0.x, 2021.7.x, 2021.6.x, 2021.5.x, 2021.4.x, 2021.3.x, 2021.2.x, 2021.1.x, 2021.0.x, 2019.8.x, 2019.7.x, 2019.5.x, 2019.4.x, 2019.3.x, 2019.2.x, 2019.1.x, 2019.0.x, 2018.1.x, 2017.3.x, 2017.2.x, 2016.4.x
- Puppet >= 4.10.0 < 8.0.0
- , , ,
Start using this module
Add this module to your Puppetfile:
mod 'veepshosting-vsftpd', '8.0.0'Learn more about managing modules with a PuppetfileDocumentation
veepshosting/vsftpd — version 8.0.0 Jan 17th 2021
vsftpd Module
Overview
This module install and configure vsftpd ftp server.
Usage
Default configuration:
include vsftpd
Custom configuration:
class { 'vsftpd':
anonymous_enable => 'NO',
anon_mkdir_write_enable => 'NO',
anon_other_write_enable => 'NO',
local_enable => 'YES',
download_enable => 'YES',
write_enable => 'YES',
local_umask => '022',
dirmessage_enable => 'YES',
xferlog_enable => 'YES',
connect_from_port_20 => 'YES',
xferlog_std_format => 'YES',
chroot_local_user => 'YES',
chroot_list_enable => 'YES',
file_open_mode => '0666'
ftp_data_port => '20',
listen => 'YES',
listen_ipv6 => 'NO',
listen_port => '21',
pam_service_name => 'vsftpd',
tcp_wrappers => 'YES',
allow_writeable_chroot => 'YES',
pasv_enable => 'YES',
pasv_min_port => '1024',
pasv_max_port => '1048',
pasv_address => '127.0.0.1',
}
Advanced Configuration
anon_umask => '077',
anon_root => '/var/ftp/anonymous',
ftpd_banner => 'My custom banner',
banner_file => '/etc/vsftpd/my_banner.txt',
max_clients => '0',
max_per_ip => '0',
ftp_username => 'ftp',
guest_enable => 'NO',
guest_username => 'ftp',
anon_world_readable_only => 'NO',
ascii_download_enable => 'NO',
ascii_upload_enable => 'NO',
chown_uploads => 'YES',
chown_username => 'linux',
chroot_list_file => '/etc/vsftpd/my_chroot_list',
secure_chroot_dir => '/usr/share/empty',
user_config_dir => '/etc/vsftpd/user_config/',
userlist_deny => 'YES',
userlist_enable => 'YES',
userlist_file => '/etc/vsftpd/my_userlist',
delete_failed_uploads => 'NO',
cmds_allowed => 'PASV,RETR,QUIT',
cmds_denied => 'PASV,RETR,QUIT',
deny_file => '{*.mp3,*.mov,.private}',
hide_file => '{*.mp3,.hidden,hide*,h?}',
syslog_enable => 'NO',
dual_log_enable => 'NO',
hide_ids => 'NO',
use_localtime => 'NO',
local_max_rate => '0',
SSL integration
rsa_cert_file => '/etc/ssl/private/vsftpd.pem',
rsa_private_key_file => '/etc/ssl/private/vsftpd.pem',
ssl_enable => 'YES',
allow_anon_ssl => 'NO',
force_local_data_ssl => 'YES',
force_local_logins_ssl => 'YES',
ssl_tlsv1 => 'YES',
ssl_sslv2 => 'NO',
ssl_sslv3 => 'NO',
require_ssl_reuse => 'NO',
ssl_ciphers => 'HIGH',
Changelog
7.0.0
- moved comments for configuration parameter into the if block of the config template
- Added support for the following configuration parameters
anon_mkdir_write_enable
anon_other_write_enable
download_enable
chroot_list_enable
file_open_mode
ftp_data_port
listen_port
anon_umask
anon_root
ftpd_banner
banner_file
max_clients
max_per_ip
ftp_username
guest_enable
guest_username
anon_world_readable_only
ascii_download_enable
ascii_upload_enable
chown_uploads
chown_username
chroot_list_file
secure_chroot_dir
user_config_dir
userlist_deny
userlist_enable
userlist_file
delete_failed_uploads
cmds_allowed
cmds_denied
deny_file
hide_file
syslog_enable
dual_log_enable
hide_ids
use_localtime
local_max_rate
Copyright 2018 Aneesh C
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.