# AUTHOR <EMAIL@ADDRESS>, YEAR.
# 
msgid ""
msgstr ""
"Project-Id-Version: Fedora Deployment Guide\n"
"POT-Creation-Date: 2011-02-22T00:50:48\n"
"PO-Revision-Date: 2011-08-21 06:08+0000\n"
"Last-Translator: Automatically generated\n"
"Language-Team: None\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
"Language: sl\n"
"Plural-Forms: nplurals=4; plural=(n%100==1 ? 0 : n%100==2 ? 1 : n%100==3 || n%100==4 ? 2 : 3)\n"

#. Tag: title
#, no-c-format
msgid "FTP"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid "<primary>FTP</primary> <secondary>definition of</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid "<primary>FTP</primary> <seealso> <command>vsftpd</command> </seealso>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<firstterm>File Transfer Protocol</firstterm> (<systemitem "
"class=\"protocol\">FTP</systemitem>) is one of the oldest and most commonly "
"used protocols found on the Internet today. Its purpose is to reliably "
"transfer files between computer hosts on a network without requiring the "
"user to log directly into the remote host or have knowledge of how to use "
"the remote system. It allows users to access files on remote systems using a"
" standard set of simple commands."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"This chapter outlines the basics of the <systemitem "
"class=\"protocol\">FTP</systemitem> protocol, as well as configuration "
"options for the primary <systemitem class=\"protocol\">FTP</systemitem> "
"server shipped with &MAJOROS;, "
"<firstterm><command>vsftpd</command></firstterm>."
msgstr ""

#. Tag: title
#, no-c-format
msgid "The File Transfer Protocol"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid "<primary>FTP</primary> <secondary>introducing</secondary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"However, because <systemitem class=\"protocol\">FTP</systemitem> is so "
"prevalent on the Internet, it is often required to share files to the "
"public. System administrators, therefore, should be aware of the <systemitem"
" class=\"protocol\">FTP</systemitem> protocol's unique characteristics."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Multiple Ports, Multiple Modes"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid "<primary>FTP</primary> <secondary>command port</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid "<primary>FTP</primary> <secondary>data port</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid "<primary>FTP</primary> <secondary>active mode</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid "<primary>FTP</primary> <secondary>passive mode</secondary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Unlike most protocols used on the Internet, <systemitem "
"class=\"protocol\">FTP</systemitem> requires multiple network ports to work "
"properly. When an <systemitem class=\"protocol\">FTP</systemitem> client "
"application initiates a connection to an <systemitem "
"class=\"protocol\">FTP</systemitem> server, it opens port "
"<constant>21</constant> on the server — known as the <firstterm>command "
"port</firstterm>. This port is used to issue all commands to the server. Any"
" data requested from the server is returned to the client via a "
"<firstterm>data port</firstterm>. The port number for data connections, and "
"the way in which data connections are initialized, vary depending upon "
"whether the client requests the data in <firstterm>active</firstterm> or "
"<firstterm>passive</firstterm> mode."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The following defines these modes:"
msgstr ""

#. Tag: term
#, no-c-format
msgid "active mode"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Active mode is the original method used by the <systemitem "
"class=\"protocol\">FTP</systemitem> protocol for transferring data to the "
"client application. When an active mode data transfer is initiated by the "
"<systemitem class=\"protocol\">FTP</systemitem> client, the server opens a "
"connection from port <constant>20</constant> on the server to the "
"<systemitem class=\"protocol\">IP</systemitem> address and a random, "
"unprivileged port (greater than <constant>1024</constant>) specified by the "
"client. This arrangement means that the client machine must be allowed to "
"accept connections over any port above <constant>1024</constant>. With the "
"growth of insecure networks, such as the Internet, the use of firewalls to "
"protect client machines is now prevalent. Because these client-side "
"firewalls often deny incoming connections from active mode <systemitem "
"class=\"protocol\">FTP</systemitem> servers, passive mode was devised."
msgstr ""

#. Tag: term
#, no-c-format
msgid "passive mode"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Passive mode, like active mode, is initiated by the <systemitem "
"class=\"protocol\">FTP</systemitem> client application. When requesting data"
" from the server, the <systemitem class=\"protocol\">FTP</systemitem> client"
" indicates it wants to access the data in passive mode and the server "
"provides the <systemitem class=\"protocol\">IP</systemitem> address and a "
"random, unprivileged port (greater than <constant>1024</constant>) on the "
"server. The client then connects to that port on the server to download the "
"requested information."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"While passive mode resolves issues for client-side firewall interference "
"with data connections, it can complicate administration of the server-side "
"firewall. You can reduce the number of open ports on a server by limiting "
"the range of unprivileged ports on the <systemitem "
"class=\"protocol\">FTP</systemitem> server. This also simplifies the process"
" of configuring firewall rules for the server. Refer to <xref linkend=\"s2"
"-ftp-vsftpd-conf-opt-net\" /> for more information about limiting passive "
"ports."
msgstr ""

#. Tag: title
#, no-c-format
msgid "FTP Servers"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary>FTP</primary> <secondary>server software</secondary> <tertiary> "
"<command>vsftpd</command> </tertiary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary>FTP</primary> <secondary>server software</secondary> <tertiary> "
"<application>Red Hat Content Accelerator</application> </tertiary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid "<primary> <command>vsftpd</command> </primary> <seealso>FTP</seealso>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>security "
"features</secondary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"&MAJOROS; ships with two different <systemitem "
"class=\"protocol\">FTP</systemitem> servers:"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<application>Red Hat Content Accelerator</application> — A kernel-based Web "
"server that delivers high performance Web server and <systemitem "
"class=\"protocol\">FTP</systemitem> services. Since speed is its primary "
"design goal, it has limited functionality and runs only as an anonymous "
"<systemitem class=\"protocol\">FTP</systemitem> server. For more information"
" about configuring and administering <application>Red Hat Content "
"Accelerator</application>, consult the documentation available online at "
"<ulink "
"url=\"http://www.redhat.com/docs/manuals/tux/\">http://www.redhat.com/docs/manuals/tux/</ulink>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>vsftpd</command> — A fast, secure <systemitem "
"class=\"protocol\">FTP</systemitem> daemon which is the preferred "
"<systemitem class=\"protocol\">FTP</systemitem> server for &MAJOROS;. The "
"remainder of this chapter focuses on <command>vsftpd</command>."
msgstr ""

#. Tag: title
#, no-c-format
msgid "<command>vsftpd</command>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<firstterm>The Very Secure FTP Daemon</firstterm> "
"(<command>vsftpd</command>) is designed from the ground up to be fast, "
"stable, and, most importantly, secure. <command>vsftpd</command> is the only"
" stand-alone <systemitem class=\"protocol\">FTP</systemitem> server "
"distributed with &MAJOROS;, due to its ability to handle large numbers of "
"connections efficiently and securely."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The security model used by <command>vsftpd</command> has three primary "
"aspects:"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<emphasis>Strong separation of privileged and non-privileged "
"processes</emphasis> — Separate processes handle different tasks, and each "
"of these processes run with the minimal privileges required for the task."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<emphasis>Tasks requiring elevated privileges are handled by processes with "
"the minimal privilege necessary</emphasis> — By leveraging compatibilities "
"found in the <filename>libcap</filename> library, tasks that usually require"
" full root privileges can be executed more safely from a less privileged "
"process."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<emphasis>Most processes run in a <command>chroot</command> jail</emphasis> "
"— Whenever possible, processes are change-rooted to the directory being "
"shared; this directory is then considered a <command>chroot</command> jail. "
"For example, if the directory <command>/var/ftp/</command> is the primary "
"shared directory, <command>vsftpd</command> reassigns "
"<command>/var/ftp/</command> to the new root directory, known as "
"<command>/</command>. This disallows any potential malicious hacker "
"activities for any directories not contained below the new root directory."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Use of these security practices has the following effect on how "
"<command>vsftpd</command> deals with requests:"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<emphasis>The parent process runs with the least privileges "
"required</emphasis> — The parent process dynamically calculates the level of"
" privileges it requires to minimize the level of risk. Child processes "
"handle direct interaction with the <systemitem "
"class=\"protocol\">FTP</systemitem> clients and run with as close to no "
"privileges as possible."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<emphasis>All operations requiring elevated privileges are handled by a "
"small parent process</emphasis> — Much like the Apache <systemitem "
"class=\"protocol\">HTTP</systemitem> Server, <command>vsftpd</command> "
"launches unprivileged child processes to handle incoming connections. This "
"allows the privileged, parent process to be as small as possible and handle "
"relatively few tasks."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<emphasis>All requests from unprivileged child processes are distrusted by "
"the parent process</emphasis> — Communication with child processes are "
"received over a socket, and the validity of any information from child "
"processes is checked before being acted on."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<emphasis>Most interaction with <systemitem "
"class=\"protocol\">FTP</systemitem> clients is handled by unprivileged child"
" processes in a <command>chroot</command> jail</emphasis> — Because these "
"child processes are unprivileged and only have access to the directory being"
" shared, any crashed processes only allows the attacker access to the shared"
" files."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Files Installed with <command>vsftpd</command>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>RPM</secondary> "
"<tertiary>files installed by</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The <filename>vsftpd</filename> RPM installs the daemon "
"(<filename>/usr/sbin/vsftpd</filename>), its configuration and related "
"files, as well as <systemitem class=\"protocol\">FTP</systemitem> "
"directories onto the system. The following lists the files and directories "
"related to <command>vsftpd</command> configuration:"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<filename>/etc/rc.d/init.d/vsftpd</filename> — The <emphasis>initialization "
"script</emphasis> (<firstterm>initscript</firstterm>) used by the "
"<command>/sbin/service</command> command to start, stop, or reload "
"<command>vsftpd</command>. Refer to <xref linkend=\"s1-ftp-vsftpd-start\" />"
" for more information about using this script."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<filename>/etc/pam.d/vsftpd</filename> — The Pluggable Authentication "
"Modules (PAM) configuration file for <command>vsftpd</command>. This file "
"specifies the requirements a user must meet to login to the <systemitem "
"class=\"protocol\">FTP</systemitem> server. For more information on PAM, "
"refer to the <citetitle pubwork=\"chapter\">Using Pluggable Authentication "
"Modules (PAM)</citetitle> chapter of the &MAJOROSVER; <citetitle>Managing "
"Single Sign-On and Smart Cards</citetitle> guide."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<filename>/etc/vsftpd/vsftpd.conf</filename> — The configuration file for "
"<command>vsftpd</command>. Refer to <xref linkend=\"s1-ftp-vsftpd-conf\" /> "
"for a list of important options contained within this file."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<filename>/etc/vsftpd/ftpusers</filename> — A list of users not allowed to "
"log into <command>vsftpd</command>. By default, this list includes the "
"<command>root</command>, <command>bin</command>, and "
"<command>daemon</command> users, among others."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<filename>/etc/vsftpd/user_list</filename> — This file can be configured to "
"either deny or allow access to the users listed, depending on whether the "
"<command>userlist_deny</command> directive is set to <command>YES</command> "
"(default) or <command>NO</command> in "
"<filename>/etc/vsftpd/vsftpd.conf</filename>. If "
"<filename>/etc/vsftpd/user_list</filename> is used to grant access to users,"
" the usernames listed must <emphasis>not</emphasis> appear in "
"<filename>/etc/vsftpd/ftpusers</filename>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<filename>/var/ftp/</filename> — The directory containing files served by "
"<command>vsftpd</command>. It also contains the "
"<filename>/var/ftp/pub/</filename> directory for anonymous users. Both "
"directories are world-readable, but writable only by the root user."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Starting and Stopping <command>vsftpd</command>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> "
"<secondary>starting</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> "
"<secondary>stopping</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>status</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> "
"<secondary>condrestart</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> "
"<secondary>restarting</secondary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The <filename>vsftpd</filename> RPM installs the "
"<filename>/etc/rc.d/init.d/vsftpd</filename> script, which can be accessed "
"using the <command>service</command> command."
msgstr ""

#. Tag: para
#, no-c-format
msgid "To start the server, as root type:"
msgstr ""

#. Tag: screen
#, no-c-format
msgid ""
"\n"
"<command>~]# service vsftpd start</command>\n"
"    "
msgstr ""

#. Tag: para
#, no-c-format
msgid "To stop the server, as root type:"
msgstr ""

#. Tag: screen
#, no-c-format
msgid ""
"\n"
"<command>~]# service vsftpd stop</command>\n"
"    "
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The <option>restart</option> option is a shorthand way of stopping and then "
"starting <command>vsftpd</command>. This is the most efficient way to make "
"configuration changes take effect after editing the configuration file for "
"<command>vsftpd</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid "To restart the server, as root type:"
msgstr ""

#. Tag: screen
#, no-c-format
msgid ""
"\n"
"<command>~]# service vsftpd restart</command>\n"
"    "
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The <option>condrestart</option> (<firstterm>conditional "
"restart</firstterm>) option only starts <command>vsftpd</command> if it is "
"currently running. This option is useful for scripts, because it does not "
"start the daemon if it is not running."
msgstr ""

#. Tag: para
#, no-c-format
msgid "To conditionally restart the server, as root type:"
msgstr ""

#. Tag: screen
#, no-c-format
msgid ""
"\n"
"<command>~]# service vsftpd condrestart</command>\n"
"    "
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"By default, the <command>vsftpd</command> service does "
"<emphasis>not</emphasis> start automatically at boot time. To configure the "
"<command>vsftpd</command> service to start at boot time, use an initscript "
"utility, such as <command>/sbin/chkconfig</command>, "
"<application>/usr/sbin/ntsysv</application>, or the <application>Services "
"Configuration Tool</application> program. Refer to <xref linkend=\"ch-"
"Controlling_Access_to_Services\" /> for more information regarding these "
"tools."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Starting Multiple Copies of <command>vsftpd</command>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>starting multiple "
"copies of</secondary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>multihome "
"configuration</secondary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Sometimes one computer is used to serve multiple <systemitem "
"class=\"protocol\">FTP</systemitem> domains. This is a technique called "
"<firstterm>multihoming</firstterm>. One way to multihome using "
"<command>vsftpd</command> is by running multiple copies of the daemon, each "
"with its own configuration file."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"To do this, first assign all relevant <systemitem "
"class=\"protocol\">IP</systemitem> addresses to network devices or alias "
"network devices on the system. Refer to <xref linkend=\"ch-"
"Network_Configuration\" /> for more information about configuring network "
"devices and device aliases. Additional information about network "
"configuration scripts can be found in <xref linkend=\"ch-"
"Network_Interfaces\" />."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Next, the DNS server for the <systemitem class=\"protocol\">FTP</systemitem>"
" domains must be configured to reference the correct machine. For "
"information about BIND and its configuration files, refer to <xref linkend"
"=\"ch-The_BIND_DNS_Server\" />."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"If there is more configuration files present in the "
"<filename>/etc/vsftpd</filename> directory, calling <command>service vsftpd "
"start</command> results in the <filename>/etc/rc.d/init.d/vsftpd</filename> "
"initscript starting the same number of processes as the number of "
"configuration files. Each configuration file must have a unique name in the "
"<filename>/etc/vsftpd/</filename> directory and must be readable and "
"writable only by root."
msgstr ""

#. Tag: title
#, no-c-format
msgid "<command>vsftpd</command> Configuration Options"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>format of</tertiary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary> <filename>/etc/vsftpd/vsftpd.conf</filename> "
"</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Although <command>vsftpd</command> may not offer the level of customization "
"other widely available <systemitem class=\"protocol\">FTP</systemitem> "
"servers have, it offers enough options to fill most administrator's needs. "
"The fact that it is not overly feature-laden limits configuration and "
"programmatic errors."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"All configuration of <command>vsftpd</command> is handled by its "
"configuration file, <filename>/etc/vsftpd/vsftpd.conf</filename>. Each "
"directive is on its own line within the file and follows the following "
"format:"
msgstr ""

#. Tag: screen
#, no-c-format
msgid ""
"\n"
"<replaceable>&lt;directive&gt;</replaceable>=<replaceable>&lt;value&gt;</replaceable>\n"
"    "
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"For each directive, replace <replaceable>&lt;directive&gt;</replaceable> "
"with a valid directive and <replaceable>&lt;value&gt;</replaceable> with a "
"valid value."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Important"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"There must not be any spaces between the "
"<replaceable>&lt;directive&gt;</replaceable>, equal symbol, and the "
"<replaceable>&lt;value&gt;</replaceable> in a directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Comment lines must be preceded by a hash sign (<command>#</command>) and are"
" ignored by the daemon."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"For a complete list of all directives available, refer to the man page for "
"<filename>vsftpd.conf</filename>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"For an overview of ways to secure <command>vsftpd</command>, refer to the "
"&MAJOROSVER; <citetitle>Security Guide</citetitle>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The following is a list of some of the more important directives within "
"<filename>/etc/vsftpd/vsftpd.conf</filename>. All directives not explicitly "
"found or commented out within <command>vsftpd</command>'s configuration file"
" are set to their default value."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Daemon Options"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>daemon options</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The following is a list of directives which control the overall behavior of "
"the <command>vsftpd</command> daemon."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>listen</command> — When enabled, <command>vsftpd</command> runs in "
"stand-alone mode. &MAJOROS; sets this value to <command>YES</command>. This "
"directive cannot be used in conjunction with the "
"<command>listen_ipv6</command> directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>NO</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>listen_ipv6</command> — When enabled, <command>vsftpd</command> "
"runs in stand-alone mode, but listens only to <systemitem "
"class=\"protocol\">IPv6</systemitem> sockets. This directive cannot be used "
"in conjunction with the <command>listen</command> directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>session_support</command> — When enabled, <command>vsftpd</command>"
" attempts to maintain login sessions for each user through Pluggable "
"Authentication Modules (PAM). For more information, refer to the "
"<citetitle>Using Pluggable Authentication Modules (PAM)</citetitle> chapter "
"of the &MAJOROSVER; <citetitle>Managing Single Sign-On and Smart "
"Cards</citetitle> and the PAM man pages. . If session logging is not "
"necessary, disabling this option allows <command>vsftpd</command> to run "
"with less processes and lower privileges."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>YES</command>."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Log In Options and Access Controls"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>login options</tertiary>"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>access controls</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The following is a list of directives which control the login behavior and "
"access control mechanisms."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>anonymous_enable</command> — When enabled, anonymous users are "
"allowed to log in. The usernames <computeroutput>anonymous</computeroutput> "
"and <computeroutput>ftp</computeroutput> are accepted."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Refer to <xref linkend=\"s2-ftp-vsftpd-conf-opt-anon\" /> for a list of "
"directives affecting anonymous users."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>banned_email_file</command> — If the "
"<command>deny_email_enable</command> directive is set to "
"<command>YES</command>, this directive specifies the file containing a list "
"of anonymous email passwords which are not permitted access to the server."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <filename>/etc/vsftpd/banned_emails</filename>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>banner_file</command> — Specifies the file containing text "
"displayed when a connection is established to the server. This option "
"overrides any text specified in the <command>ftpd_banner</command> "
"directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid "There is no default value for this directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>cmds_allowed</command> — Specifies a comma-delimited list of "
"<systemitem class=\"protocol\">FTP</systemitem> commands allowed by the "
"server. All other commands are rejected."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>deny_email_enable</command> — When enabled, any anonymous user "
"utilizing email passwords specified in the "
"<filename>/etc/vsftpd/banned_emails</filename> are denied access to the "
"server. The name of the file referenced by this directive can be specified "
"using the <command>banned_email_file</command> directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>ftpd_banner</command> — When enabled, the string specified within "
"this directive is displayed when a connection is established to the server. "
"This option can be overridden by the <command>banner_file</command> "
"directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid "By default <command>vsftpd</command> displays its standard banner."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>local_enable</command> — When enabled, local users are allowed to "
"log into the system."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Refer to <xref linkend=\"s2-ftp-vsftpd-conf-opt-usr\" /> for a list of "
"directives affecting local users."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>pam_service_name</command> — Specifies the PAM service name for "
"<command>vsftpd</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The default value is <command>ftp</command>. Note, in &MAJOROS;, the value "
"is set to <command>vsftpd</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The default value is <command>NO</command>. Note, in &MAJOROS;, the value is"
" set to <command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>userlist_deny</command> — When used in conjunction with the "
"<command>userlist_enable</command> directive and set to "
"<command>NO</command>, all local users are denied access unless the username"
" is listed in the file specified by the <command>userlist_file</command> "
"directive. Because access is denied before the client is asked for a "
"password, setting this directive to <command>NO</command> prevents local "
"users from submitting unencrypted passwords over the network."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>userlist_enable</command> — When enabled, the users listed in the "
"file specified by the <command>userlist_file</command> directive are denied "
"access. Because access is denied before the client is asked for a password, "
"users are prevented from submitting unencrypted passwords over the network."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The default value is <command>NO</command>, however under &MAJOROS; the "
"value is set to <command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>userlist_file</command> — Specifies the file referenced by "
"<command>vsftpd</command> when the <command>userlist_enable</command> "
"directive is enabled."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The default value is <command>/etc/vsftpd/user_list</command> and is created"
" during installation."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Anonymous User Options"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>anonymous user options</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The following lists directives which control anonymous user access to the "
"server. To use these options, the <command>anonymous_enable</command> "
"directive must be set to <command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>anon_mkdir_write_enable</command> — When enabled in conjunction "
"with the <command>write_enable</command> directive, anonymous users are "
"allowed to create new directories within a parent directory which has write "
"permissions."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>anon_root</command> — Specifies the directory "
"<command>vsftpd</command> changes to after an anonymous user logs in."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>anon_upload_enable</command> — When enabled in conjunction with the"
" <command>write_enable</command> directive, anonymous users are allowed to "
"upload files within a parent directory which has write permissions."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>anon_world_readable_only</command> — When enabled, anonymous users "
"are only allowed to download world-readable files."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>ftp_username</command> — Specifies the local user account (listed "
"in <filename>/etc/passwd</filename>) used for the anonymous <systemitem "
"class=\"protocol\">FTP</systemitem> user. The home directory specified in "
"<filename>/etc/passwd</filename> for the user is the root directory of the "
"anonymous <systemitem class=\"protocol\">FTP</systemitem> user."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>ftp</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>no_anon_password</command> — When enabled, the anonymous user is "
"not asked for a password."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>secure_email_list_enable</command> — When enabled, only a specified"
" list of email passwords for anonymous logins are accepted. This is a "
"convenient way to offer limited security to public content without the need "
"for virtual users."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Anonymous logins are prevented unless the password provided is listed in "
"<command>/etc/vsftpd/email_passwords</command>. The file format is one "
"password per line, with no trailing white spaces."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Local User Options"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>local user options</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The following lists directives which characterize the way local users access"
" the server. To use these options, the <command>local_enable</command> "
"directive must be set to <command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>chmod_enable</command> — When enabled, the <systemitem "
"class=\"protocol\">FTP</systemitem> command <command>SITE CHMOD</command> is"
" allowed for local users. This command allows the users to change the "
"permissions on files."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>chroot_list_enable</command> — When enabled, the local users listed"
" in the file specified in the <command>chroot_list_file</command> directive "
"are placed in a <command>chroot</command> jail upon log in."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"If enabled in conjunction with the <command>chroot_local_user</command> "
"directive, the local users listed in the file specified in the "
"<command>chroot_list_file</command> directive are <emphasis>not</emphasis> "
"placed in a <command>chroot</command> jail upon log in."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>chroot_list_file</command> — Specifies the file containing a list "
"of local users referenced when the <command>chroot_list_enable</command> "
"directive is set to <command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>/etc/vsftpd/chroot_list</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>chroot_local_user</command> — When enabled, local users are change-"
"rooted to their home directories after logging in."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Warning"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Enabling <command>chroot_local_user</command> opens up a number of security "
"issues, especially for users with upload privileges. For this reason, it is "
"<emphasis>not</emphasis> recommended."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>guest_enable</command> — When enabled, all non-anonymous users are "
"logged in as the user <command>guest</command>, which is the local user "
"specified in the <command>guest_username</command> directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>guest_username</command> — Specifies the username the "
"<command>guest</command> user is mapped to."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>local_root</command> — Specifies the directory "
"<command>vsftpd</command> changes to after a local user logs in."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>local_umask</command> — Specifies the umask value for file "
"creation. Note that the default value is in octal form (a numerical system "
"with a base of eight), which includes a \"0\" prefix. Otherwise the value is"
" treated as a base-10 integer."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>022</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>passwd_chroot_enable</command> — When enabled in conjunction with "
"the <command>chroot_local_user</command> directive, "
"<command>vsftpd</command> change-roots local users based on the occurrence "
"of the <command>/./</command> in the home directory field within "
"<filename>/etc/passwd</filename>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>user_config_dir</command> — Specifies the path to a directory "
"containing configuration files bearing the name of local system users that "
"contain specific setting for that user. Any directive in the user's "
"configuration file overrides those found in "
"<filename>/etc/vsftpd/vsftpd.conf</filename>."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Directory Options"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>directory options</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid "The following lists directives which affect directories."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>dirlist_enable</command> — When enabled, users are allowed to view "
"directory lists."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>dirmessage_enable</command> — When enabled, a message is displayed "
"whenever a user enters a directory with a message file. This message resides"
" within the current directory. The name of this file is specified in the "
"<command>message_file</command> directive and is "
"<filename>.message</filename> by default."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>force_dot_files</command> — When enabled, files beginning with a "
"dot (<computeroutput>.</computeroutput>) are listed in directory listings, "
"with the exception of the <filename>.</filename> and <filename>..</filename>"
" files."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>hide_ids</command> — When enabled, all directory listings show "
"<computeroutput>ftp</computeroutput> as the user and group for each file."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>message_file</command> — Specifies the name of the message file "
"when using the <command>dirmessage_enable</command> directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>.message</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>text_userdb_names</command> — When enabled, test usernames and "
"group names are used in place of UID and GID entries. Enabling this option "
"may slow performance of the server."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>use_localtime</command> — When enabled, directory listings reveal "
"the local time for the computer instead of GMT."
msgstr ""

#. Tag: title
#, no-c-format
msgid "File Transfer Options"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>file transfer options</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>download_enable</command> — When enabled, file downloads are "
"permitted."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>chown_uploads</command> — When enabled, all files uploaded by "
"anonymous users are owned by the user specified in the "
"<command>chown_username</command> directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>chown_username</command> — Specifies the ownership of anonymously "
"uploaded files if the <command>chown_uploads</command> directive is enabled."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>root</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>write_enable</command> — When enabled, <systemitem "
"class=\"protocol\">FTP</systemitem> commands which can change the file "
"system are allowed, such as <command>DELE</command>, "
"<command>RNFR</command>, and <command>STOR</command>."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Logging Options"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>logging options</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The following lists directives which affect <command>vsftpd</command>'s "
"logging behavior."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>dual_log_enable</command> — When enabled in conjunction with "
"<command>xferlog_enable</command>, <command>vsftpd</command> writes two "
"files simultaneously: a <command>wu-ftpd</command>-compatible log to the "
"file specified in the <command>xferlog_file</command> directive "
"(<filename>/var/log/xferlog</filename> by default) and a standard "
"<command>vsftpd</command> log file specified in the "
"<command>vsftpd_log_file</command> directive "
"(<filename>/var/log/vsftpd.log</filename> by default)."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>log_ftp_protocol</command> — When enabled in conjunction with "
"<command>xferlog_enable</command> and with "
"<command>xferlog_std_format</command> set to <command>NO</command>, all "
"<systemitem class=\"protocol\">FTP</systemitem> commands and responses are "
"logged. This directive is useful for debugging."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>syslog_enable</command> — When enabled in conjunction with "
"<command>xferlog_enable</command>, all logging normally written to the "
"standard <command>vsftpd</command> log file specified in the "
"<command>vsftpd_log_file</command> directive "
"(<filename>/var/log/vsftpd.log</filename> by default) is sent to the system "
"logger instead under the <systemitem class=\"daemon\">FTPD</systemitem> "
"facility."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>vsftpd_log_file</command> — Specifies the <command>vsftpd</command>"
" log file. For this file to be used, <command>xferlog_enable</command> must "
"be enabled and <command>xferlog_std_format</command> must either be set to "
"<command>NO</command> or, if <command>xferlog_std_format</command> is set to"
" <command>YES</command>, <command>dual_log_enable</command> must be enabled."
" It is important to note that if <command>syslog_enable</command> is set to "
"<command>YES</command>, the system log is used instead of the file specified"
" in this directive."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <filename>/var/log/vsftpd.log</filename>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>xferlog_enable</command> — When enabled, <command>vsftpd</command> "
"logs connections (<command>vsftpd</command> format only) and file transfer "
"information to the log file specified in the "
"<command>vsftpd_log_file</command> directive "
"(<filename>/var/log/vsftpd.log</filename> by default). If "
"<command>xferlog_std_format</command> is set to <command>YES</command>, file"
" transfer information is logged but connections are not, and the log file "
"specified in <command>xferlog_file</command> "
"(<filename>/var/log/xferlog</filename> by default) is used instead. It is "
"important to note that both log files and log formats are used if "
"<command>dual_log_enable</command> is set to <command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>xferlog_file</command> — Specifies the <command>wu-"
"ftpd</command>-compatible log file. For this file to be used, "
"<command>xferlog_enable</command> must be enabled and "
"<command>xferlog_std_format</command> must be set to <command>YES</command>."
" It is also used if <command>dual_log_enable</command> is set to "
"<command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <filename>/var/log/xferlog</filename>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>xferlog_std_format</command> — When enabled in conjunction with "
"<command>xferlog_enable</command>, only a <command>wu-"
"ftpd</command>-compatible file transfer log is written to the file specified"
" in the <command>xferlog_file</command> directive "
"(<filename>/var/log/xferlog</filename> by default). It is important to note "
"that this file only logs file transfers and does not log connections to the "
"server."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"To maintain compatibility with log files written by the older <command>wu-"
"ftpd</command> <systemitem class=\"protocol\">FTP</systemitem> server, the "
"<command>xferlog_std_format</command> directive is set to "
"<command>YES</command> under &MAJOROS;. However, this setting means that "
"connections to the server are not logged."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"To both log connections in <command>vsftpd</command> format and maintain a "
"<command>wu-ftpd</command>-compatible file transfer log, set "
"<command>dual_log_enable</command> to <command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"If maintaining a <command>wu-ftpd</command>-compatible file transfer log is "
"not important, either set <command>xferlog_std_format</command> to "
"<command>NO</command>, comment the line with a hash sign "
"(<command>#</command>), or delete the line entirely."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Network Options"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>configuration "
"file</secondary> <tertiary>network options</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The following lists directives which affect how <command>vsftpd</command> "
"interacts with the network."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>accept_timeout</command> — Specifies the amount of time for a "
"client using passive mode to establish a connection."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>60</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>anon_max_rate</command> — Specifies the maximum data transfer rate "
"for anonymous users in bytes per second."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The default value is <command>0</command>, which does not limit the transfer"
" rate."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>connect_from_port_20</command> When enabled, "
"<command>vsftpd</command> runs with enough privileges to open port 20 on the"
" server during active mode data transfers. Disabling this option allows "
"<command>vsftpd</command> to run with less privileges, but may be "
"incompatible with some <systemitem class=\"protocol\">FTP</systemitem> "
"clients."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>connect_timeout</command> — Specifies the maximum amount of time a "
"client using active mode has to respond to a data connection, in seconds."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>data_connection_timeout</command> — Specifies maximum amount of "
"time data transfers are allowed to stall, in seconds. Once triggered, the "
"connection to the remote client is closed."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>300</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>ftp_data_port</command> — Specifies the port used for active data "
"connections when <command>connect_from_port_20</command> is set to "
"<command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>20</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>idle_session_timeout</command> — Specifies the maximum amount of "
"time between commands from a remote client. Once triggered, the connection "
"to the remote client is closed."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>listen_address</command> — Specifies the <systemitem "
"class=\"protocol\">IP</systemitem> address on which "
"<command>vsftpd</command> listens for network connections."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Tip"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"If running multiple copies of <command>vsftpd</command> serving different "
"<systemitem class=\"protocol\">IP</systemitem> addresses, the configuration "
"file for each copy of the <command>vsftpd</command> daemon must have a "
"different value for this directive. Refer to <xref linkend=\"s2-ftp-vsftpd-"
"start-multi\" /> for more information about multihomed <systemitem "
"class=\"protocol\">FTP</systemitem> servers."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>listen_address6</command> — Specifies the <systemitem "
"class=\"protocol\">IPv6</systemitem> address on which "
"<command>vsftpd</command> listens for network connections when "
"<command>listen_ipv6</command> is set to <command>YES</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>listen_port</command> — Specifies the port on which "
"<command>vsftpd</command> listens for network connections."
msgstr ""

#. Tag: para
#, no-c-format
msgid "The default value is <command>21</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>local_max_rate</command> — Specifies the maximum rate data is "
"transferred for local users logged into the server in bytes per second."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>max_clients</command> — Specifies the maximum number of "
"simultaneous clients allowed to connect to the server when it is running in "
"standalone mode. Any additional client connections would result in an error "
"message."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The default value is <command>0</command>, which does not limit connections."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>max_per_ip</command> — Specifies the maximum of clients allowed to "
"connected from the same source <systemitem "
"class=\"protocol\">IP</systemitem> address."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>pasv_address</command> — Specifies the <systemitem "
"class=\"protocol\">IP</systemitem> address for the public facing <systemitem"
" class=\"protocol\">IP</systemitem> address of the server for servers behind"
" Network Address Translation (NAT) firewalls. This enables "
"<command>vsftpd</command> to hand out the correct return address for passive"
" mode connections."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>pasv_enable</command> — When enabled, passive mode connects are "
"allowed."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>pasv_max_port</command> — Specifies the highest possible port sent "
"to the <systemitem class=\"protocol\">FTP</systemitem> clients for passive "
"mode connections. This setting is used to limit the port range so that "
"firewall rules are easier to create."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The default value is <command>0</command>, which does not limit the highest "
"passive port range. The value must not exceed <command>65535</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>pasv_min_port</command> — Specifies the lowest possible port sent "
"to the <systemitem class=\"protocol\">FTP</systemitem> clients for passive "
"mode connections. This setting is used to limit the port range so that "
"firewall rules are easier to create."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The default value is <command>0</command>, which does not limit the lowest "
"passive port range. The value must not be lower <command>1024</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>pasv_promiscuous</command> — When enabled, data connections are not"
" checked to make sure they are originating from the same <systemitem "
"class=\"protocol\">IP</systemitem> address. This setting is only useful for "
"certain types of tunneling."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Caution"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"Do not enable this option unless absolutely necessary as it disables an "
"important security feature which verifies that passive mode connections "
"originate from the same <systemitem class=\"protocol\">IP</systemitem> "
"address as the control connection that initiates the data transfer."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>port_enable</command> — When enabled, active mode connects are "
"allowed."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Additional Resources"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>additional "
"resources</secondary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"For more information about <command>vsftpd</command>, refer to the following"
" resources."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Installed Documentation"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>additional "
"resources</secondary> <tertiary>installed documentation</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"The <filename>/usr/share/doc/vsftpd-<replaceable>&lt;version-"
"number&gt;</replaceable>/</filename> directory — Replace <replaceable>&lt"
";version-number&gt;</replaceable> with the installed version of the "
"<filename>vsftpd</filename> package. This directory contains a "
"<filename>README</filename> with basic information about the software. The "
"<filename>TUNING</filename> file contains basic performance tuning tips and "
"the <filename>SECURITY/</filename> directory contains information about the "
"security model employed by <command>vsftpd</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>vsftpd</command> related man pages — There are a number of man "
"pages for the daemon and configuration files. The following lists some of "
"the more important man pages."
msgstr ""

#. Tag: term
#, no-c-format
msgid "Server Applications"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>man vsftpd</command> — Describes available command line options for"
" <command>vsftpd</command>."
msgstr ""

#. Tag: term
#, no-c-format
msgid "Configuration Files"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>man vsftpd.conf</command> — Contains a detailed list of options "
"available within the configuration file for <command>vsftpd</command>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<command>man 5 hosts_access </command> — Describes the format and options "
"available within the TCP wrappers configuration files: "
"<filename>hosts.allow</filename> and <filename>hosts.deny</filename>."
msgstr ""

#. Tag: title
#, no-c-format
msgid "Useful Websites"
msgstr ""

#. Tag: indexterm
#, no-c-format
msgid ""
"<primary> <command>vsftpd</command> </primary> <secondary>additional "
"resources</secondary> <tertiary>useful websites</tertiary>"
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<ulink url=\"http://vsftpd.beasts.org/\">http://vsftpd.beasts.org/</ulink> —"
" The <command>vsftpd</command> project page is a great place to locate the "
"latest documentation and to contact the author of the software."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<ulink "
"url=\"http://slacksite.com/other/ftp.html\">http://slacksite.com/other/ftp.html</ulink>"
" — This website provides a concise explanation of the differences between "
"active and passive mode <systemitem class=\"protocol\">FTP</systemitem>."
msgstr ""

#. Tag: para
#, no-c-format
msgid ""
"<ulink "
"url=\"http://www.ietf.org/rfc/rfc0959.txt\">http://www.ietf.org/rfc/rfc0959.txt</ulink>"
" — The original <firstterm>Request for Comments</firstterm> "
"(<firstterm>RFC</firstterm>) of the <systemitem "
"class=\"protocol\">FTP</systemitem> protocol from the IETF."
msgstr ""