Join the community today
Become a Member

Pure-ftpd and anonymous setting

Discussion in 'Other Centmin Mod Installed software' started by pamamolf, Aug 1, 2016.

  1. pamamolf

    pamamolf Well-Known Member

    4,101
    428
    83
    May 31, 2014
    Ratings:
    +838
    Local Time:
    10:25 AM
    Nginx-1.26.x
    MariaDB 10.6.x
    Hi :)

    Why not have this as default to 'yes' to disable anonymous logins?

    Code:
    # Disallow anonymous connections. Only allow authenticated users.
    
    NoAnonymous                 no
    Thanks

     
  2. eva2000

    eva2000 Administrator Staff Member

    55,801
    12,271
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,857
    Local Time:
    5:25 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    could of sworn that should be disabled by default !

    Code (Text):
    # Don't allow authenticated users - have a public anonymous FTP only.
    
    AnonymousOnly               no
    
    
    
    # Disallow anonymous connections. Only allow authenticated users.
    
    NoAnonymous                 no


    thanks
     
  3. pamamolf

    pamamolf Well-Known Member

    4,101
    428
    83
    May 31, 2014
    Ratings:
    +838
    Local Time:
    10:25 AM
    Nginx-1.26.x
    MariaDB 10.6.x
    That one should stay as it is to 'no':

    Code:
    # Don't allow authenticated users - have a public anonymous FTP only.
    
    AnonymousOnly               no
    Why you post that?

    Confused....


    Correct settings should be:

    Code:
    # Don't allow authenticated users - have a public anonymous FTP only.
    
    AnonymousOnly               no
    
    
    
    # Disallow anonymous connections. Only allow authenticated users.
    
    NoAnonymous                 yes
    or i am confused? :)
     
  4. eva2000

    eva2000 Administrator Staff Member

    55,801
    12,271
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,857
    Local Time:
    5:25 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    give users context to where the relevant line is

    updated 123.08stable and 123.09beta01 with fix, just update centmin mod and run centmin.sh to auto update the setting - not that it matters as even with it set to no instead of yes to disable anonymous connections, i tested an anonymous can't connect for me at least i get
    Code (Text):
    i Control connection could not be established.
    i (0x274d) No connection could be made because the target machine actively refused it.
    


    on updated centmin mod builds when you run centmin.sh it will detect if auto updating of the setting is required
    Code (Text):
    ./centmin.sh
    
    Redirecting to /bin/systemctl restart  pure-ftpd.service
    
    disable pure-ftpd annonymous logins


    looks like other defaults in pure-ftpd also restrict what anonymous users can do anyway
    Code (Text):
    # Are anonymous users allowed to create new directories ?
    
    AnonymousCanCreateDirs      no
    
    # Disallow anonymous users to upload new files (no = upload is allowed)
    
    AnonymousCantUpload         yes
    


    Upgrading Centmin Mod Code to Latest Version



    Getting Started Guide step 19 outlines also how to keep Centmin Mod code updated or how to switch version branches.

    Centmin Mod LEMP stack's script code is constantly updated for improvements, bug fixes and security fixes so keeping the Centmin Mod code up to date is important. With Centmin Mod 1.2.3-eva2000.08) (123.08stable) and higher releases, a newly added centmin.sh menu option 23 allows much easier code updates and version branch swicthing via Git backed environment you can setup. For full details read the following links:
     
    Last edited: Aug 1, 2016