Home Explore Help
Register Sign In
wareck
/
ftpz
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 9adeb6394c
Branches Tags
ftpz
/
tunables.h

tunables.h 8.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150 
  1. #ifndef VSF_TUNABLES_H
    2. 

  2. #define VSF_TUNABLES_H
    3. 

  3. 

  4. /* tunables_load_defaults()
    5. 

  5.  * PURPOSE
    6. 

  6.  * Load the default values into the global settings variables.
    7. 

  7.  */
    8. 

  8. void tunables_load_defaults();
    9. 

  9. 

  10. /* Configurable preferences */
    11. 

  11. /* Booleans */
    12. 

  12. extern int tunable_anonymous_enable;          /* Allow anon logins */
    13. 

  13. extern int tunable_local_enable;              /* Allow local logins */
    14. 

  14. extern int tunable_pasv_enable;               /* Allow PASV */
    15. 

  15. extern int tunable_port_enable;               /* Allow PORT */
    16. 

  16. extern int tunable_chroot_local_user;         /* Restrict local to home dir */
    17. 

  17. extern int tunable_write_enable;              /* Global enable writes */
    18. 

  18. extern int tunable_anon_upload_enable;        /* Enable STOR for anon users */
    19. 

  19. extern int tunable_anon_mkdir_write_enable;   /* MKD for anon */
    20. 

  20. extern int tunable_anon_other_write_enable;   /* APPE DELE RMD RNFR for anon */
    21. 

  21. extern int tunable_chown_uploads;             /* chown() anon uploaded files */
    22. 

  22. extern int tunable_connect_from_port_20;      /* PORT connects from port 20 */
    23. 

  23. extern int tunable_xferlog_enable;            /* Log transfers to a file */
    24. 

  24. extern int tunable_dirmessage_enable;         /* Look for + output .message */
    25. 

  25. extern int tunable_anon_world_readable_only;  /* Only serve world readable */
    26. 

  26. extern int tunable_async_abor_enable;         /* Enable async ABOR requests */
    27. 

  27. extern int tunable_ascii_upload_enable;       /* Permit ASCII upload */
    28. 

  28. extern int tunable_ascii_download_enable;     /* Permit ASCII download */
    29. 

  29. extern int tunable_one_process_model;         /* Go faster stripes ;-) */
    30. 

  30. extern int tunable_xferlog_std_format;        /* Log details like wu-ftpd */
    31. 

  31. extern int tunable_pasv_promiscuous;          /* Allow any PASV connect IP */
    32. 

  32. extern int tunable_deny_email_enable;         /* Ban a list of anon e-mails */
    33. 

  33. extern int tunable_chroot_list_enable;        /* chroot() based on list file */
    34. 

  34. extern int tunable_setproctitle_enable;       /* Try to use setproctitle() */
    35. 

  35. extern int tunable_text_userdb_names;         /* For "ls", lookup text names */
    36. 

  36. extern int tunable_ls_recurse_enable;         /* Allow ls -R */
    37. 

  37. extern int tunable_log_ftp_protocol;          /* Log FTP requests/responses */
    38. 

  38. extern int tunable_guest_enable;              /* Remap guest users */
    39. 

  39. extern int tunable_userlist_enable;           /* Explicit user allow or deny */
    40. 

  40. extern int tunable_userlist_deny;             /* Is user list allow or deny? */
    41. 

  41. extern int tunable_use_localtime;             /* Use local time or GMT? */
    42. 

  42. extern int tunable_check_shell;               /* Use /etc/shells for non-PAM */
    43. 

  43. extern int tunable_hide_ids;                  /* Show "ftp" in ls listings */
    44. 

  44. extern int tunable_listen;                    /* Standalone (no inetd) mode? */
    45. 

  45. extern int tunable_port_promiscuous;          /* Any any PORT connect IP */
    46. 

  46. extern int tunable_passwd_chroot_enable;      /* chroot() based on passwd */
    47. 

  47. extern int tunable_no_anon_password;          /* Do not ask for anon pword */
    48. 

  48. extern int tunable_tcp_wrappers;              /* Standalone: do tcp wrappers */
    49. 

  49. extern int tunable_use_sendfile;              /* Use sendfile() if we can */
    50. 

  50. extern int tunable_force_dot_files;           /* Show dotfiles without -a */
    51. 

  51. extern int tunable_listen_ipv6;               /* Standalone with IPv6 listen */
    52. 

  52. extern int tunable_dual_log_enable;           /* Log vsftpd.log AND xferlog */
    53. 

  53. extern int tunable_syslog_enable;             /* Use syslog not vsftpd.log */
    54. 

  54. extern int tunable_background;                /* Background listener process */
    55. 

  55. extern int tunable_virtual_use_local_privs;   /* Virtual user => local privs */
    56. 

  56. extern int tunable_session_support;           /* utmp, wtmp, pam_session */
    57. 

  57. extern int tunable_download_enable;           /* Can download anything? */
    58. 

  58. extern int tunable_dirlist_enable;            /* Can see any dirs? */
    59. 

  59. extern int tunable_chmod_enable;              /* Is CHMOD allowed? (local) */
    60. 

  60. extern int tunable_secure_email_list_enable;  /* Require specific anon email */
    61. 

  61. extern int tunable_run_as_launching_user;     /* Runs as launching user */
    62. 

  62. extern int tunable_no_log_lock;               /* Don't lock log files */
    63. 

  63. extern int tunable_ssl_enable;                /* Allow SSL/TLS AUTH */
    64. 

  64. extern int tunable_allow_anon_ssl;            /* Allow anonymous use of SSL */
    65. 

  65. extern int tunable_force_local_logins_ssl;    /* Require local logins use SSL */
    66. 

  66. extern int tunable_force_local_data_ssl;      /* Require local data uses SSL */
    67. 

  67. extern int tunable_sslv2;                     /* Allow SSLv2 */
    68. 

  68. extern int tunable_sslv3;                     /* Allow SSLv3 */
    69. 

  69. extern int tunable_tlsv1;                     /* Allow TLSv1 */
    70. 

  70. extern int tunable_tilde_user_enable;         /* Support e.g. ~chris */
    71. 

  71. extern int tunable_force_anon_logins_ssl;     /* Require anon logins use SSL */
    72. 

  72. extern int tunable_force_anon_data_ssl;       /* Require anon data uses SSL */
    73. 

  73. extern int tunable_mdtm_write;                /* Allow MDTM to set timestamps */
    74. 

  74. extern int tunable_lock_upload_files;         /* Lock uploading files */
    75. 

  75. extern int tunable_pasv_addr_resolve;         /* DNS resolve pasv_addr */
    76. 

  76. extern int tunable_debug_ssl;                 /* Verbose SSL logging */
    77. 

  77. extern int tunable_require_cert;              /* SSL client cert required */
    78. 

  78. extern int tunable_validate_cert;             /* SSL certs must be valid */
    79. 

  79. extern int tunable_strict_ssl_read_eof;       /* Need SSL_shutdown() on read */
    80. 

  80. extern int tunable_strict_ssl_write_shutdown; /* Need SSL_shutdown() on write */
    81. 

  81. extern int tunable_ssl_request_cert;          /* Ask client for cert */
    82. 

  82. extern int tunable_delete_failed_uploads;     /* Delete an upload that failed */
    83. 

  83. extern int tunable_implicit_ssl;              /* Use implicit SSL protocol */
    84. 

  84. extern int tunable_ptrace_sandbox;            /* DEPRECATED ptrace sandbox */
    85. 

  85. extern int tunable_require_ssl_reuse;         /* Require re-used data conn */
    86. 

  86. extern int tunable_isolate;                   /* Use container clone() flags */
    87. 

  87. extern int tunable_isolate_network;           /* Use CLONE_NEWNET */
    88. 

  88. extern int tunable_ftp_enable;                /* Allow FTP protocol */
    89. 

  89. extern int tunable_http_enable;               /* Allow HTTP protocol */
    90. 

  90. extern int tunable_seccomp_sandbox;           /* seccomp filter sandbox */
    91. 

  91. extern int tunable_allow_writeable_chroot;    /* Allow misconfiguration */
    92. 

  92. 

  93. /* Integer/numeric defines */
    94. 

  94. extern unsigned int tunable_accept_timeout;
    95. 

  95. extern unsigned int tunable_connect_timeout;
    96. 

  96. extern unsigned int tunable_local_umask;
    97. 

  97. extern unsigned int tunable_anon_umask;
    98. 

  98. extern unsigned int tunable_ftp_data_port;
    99. 

  99. extern unsigned int tunable_idle_session_timeout;
    100. 

  100. extern unsigned int tunable_data_connection_timeout;
    101. 

  101. extern unsigned int tunable_pasv_min_port;
    102. 

  102. extern unsigned int tunable_pasv_max_port;
    103. 

  103. extern unsigned int tunable_anon_max_rate;
    104. 

  104. extern unsigned int tunable_local_max_rate;
    105. 

  105. extern unsigned int tunable_listen_port;
    106. 

  106. extern unsigned int tunable_max_clients;
    107. 

  107. extern unsigned int tunable_file_open_mode;
    108. 

  108. extern unsigned int tunable_max_per_ip;
    109. 

  109. extern unsigned int tunable_trans_chunk_size;
    110. 

  110. extern unsigned int tunable_delay_failed_login;
    111. 

  111. extern unsigned int tunable_delay_successful_login;
    112. 

  112. extern unsigned int tunable_max_login_fails;
    113. 

  113. extern unsigned int tunable_chown_upload_mode;
    114. 

  114. 

  115. /* String defines */
    116. 

  116. extern const char* tunable_secure_chroot_dir;
    117. 

  117. extern const char* tunable_ftp_username;
    118. 

  118. extern const char* tunable_chown_username;
    119. 

  119. extern const char* tunable_xferlog_file;
    120. 

  120. extern const char* tunable_vsftpd_log_file;
    121. 

  121. extern const char* tunable_message_file;
    122. 

  122. extern const char* tunable_nopriv_user;
    123. 

  123. extern const char* tunable_ftpd_banner;
    124. 

  124. extern const char* tunable_banned_email_file;
    125. 

  125. extern const char* tunable_chroot_list_file;
    126. 

  126. extern const char* tunable_pam_service_name;
    127. 

  127. extern const char* tunable_guest_username;
    128. 

  128. extern const char* tunable_userlist_file;
    129. 

  129. extern const char* tunable_anon_root;
    130. 

  130. extern const char* tunable_local_root;
    131. 

  131. extern const char* tunable_banner_file;
    132. 

  132. extern const char* tunable_pasv_address;
    133. 

  133. extern const char* tunable_listen_address;
    134. 

  134. extern const char* tunable_user_config_dir;
    135. 

  135. extern const char* tunable_listen_address6;
    136. 

  136. extern const char* tunable_cmds_allowed;
    137. 

  137. extern const char* tunable_hide_file;
    138. 

  138. extern const char* tunable_deny_file;
    139. 

  139. extern const char* tunable_user_sub_token;
    140. 

  140. extern const char* tunable_email_password_file;
    141. 

  141. extern const char* tunable_rsa_cert_file;
    142. 

  142. extern const char* tunable_dsa_cert_file;
    143. 

  143. extern const char* tunable_ssl_ciphers;
    144. 

  144. extern const char* tunable_rsa_private_key_file;
    145. 

  145. extern const char* tunable_dsa_private_key_file;
    146. 

  146. extern const char* tunable_ca_certs_file;
    147. 

  147. extern const char* tunable_cmds_denied;
    148. 

  148. 

  149. #endif /* VSF_TUNABLES_H */
    150. 

  150.