They claim to check (double-check, triple-check) everything you do, and it can run as non-priviledged user in a chroot(), and it can work with anonymous people differently than normal users, and handle guests differently than normal users, and uses pam if that's wanted. It is a secure implementation.
The default of anonymous is normal, but you can switch that off very easily. My normal setup of vsftpd (two installs) is Guest only (using virtual logins and no anonymous, and the pam only checks the virtual logins because for virtual you have to enable local accounts, and if you only check virtual logins with pam, no normal accounts can log in.
But as far as I remember, the documentation was very rich, the example conf was very big and well documented, and the man page does the rest. Where exactly is your problem?
I'll be off for a couple of hours, but I'll check for answers at around 1500 UFie time. |