Current time: 11-27-2024, 08:25 PM Hello There, Guest! (LoginRegister)


Post Reply 
ProFTPD high load - fix
Author Message
fulltilt Offline
Member
***

Posts: 1,225
Joined: Apr 2007
Reputation: 5
Post: #1
ProFTPD high load - fix
das Problem mit der proftpd Load und dem langen Verbindungsaufbau besteht immer noch. Ich habe daher folgendes gemacht:

/etc/init.d/proftpd stop
mkdir /etc/proftpd/ispcp2
nano /etc/proftpd/ispcp2/proftpd-new.conf
einfügen und speichern:
Code:
<Directory ~/backups>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/backups/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/cgi-bin>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/cgi-bin/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/htdocs>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/htdocs/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/errors>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/errors/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/logs>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/logs/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/phptmp>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/phptmp/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/statistics>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/statistics/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>
nano /etc/proftpd/proftpd.conf
ändern (letzte Zeile):
Include /etc/proftpd/ispcp/*
nach:
Include /etc/proftpd/ispcp2/*
/etc/init.d/proftpd start

P.S.
den include auch in der /etc/ispcp/proftpd/proftpd.conf ändern auf ispcp2

Der Verbindungsaufbau ist nun schneller und die Load geht erheblich runter.
(This post was last modified: 01-03-2010 09:02 PM by fulltilt.)
01-03-2010 08:36 PM
Find all posts by this user Quote this message in a reply
Minganus Offline
Banned

Posts: 38
Joined: Feb 2011
Post: #2
Exclamation RE: ProFTPD high load - fix
Hello,
Thanks for solution!

But for protecting subdomains folders - backups, cgi-bin.... etc we must use additional rules

Code:
<Directory ~/*/backups>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/*/backups/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/*/cgi-bin>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/*/cgi-bin/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/*/htdocs>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/*/htdocs/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/*/errors>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/*/errors/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/*/logs>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/*/logs/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/*/phptmp>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/*/phptmp/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

<Directory ~/*/statistics>
<Limit RMD RNTO DELE XRMD>
  DenyAll
</Limit>
</Directory>
<Directory ~/*/statistics/*>
<Limit RMD RNTO DELE XRMD>
    AllowAll
</Limit>
</Directory>

In file all of this here


Attached File(s)
.txt  proftpd2.txt (Size: 2.46 KB / Downloads: 57)
(This post was last modified: 02-09-2011 04:35 AM by Minganus.)
02-09-2011 04:32 AM
Find all posts by this user Quote this message in a reply
fdriver Offline


Posts: 4
Joined: Mar 2011
Reputation: 0
Post: #3
RE: ProFTPD high load - fix
(02-09-2011 04:32 AM)Minganus Wrote:  Hello,
Thanks for solution!

But for protecting subdomains folders - backups, cgi-bin.... etc we must use additional rules

In file all of this here

Your idea is fine, but this not work for subdomains and aliases. Problem is with directory path ~/*/... char * middle of path is problem.

Have anybody any ideas for this ? Or some other fix for very long login time ProFTPd?

THX

P.S. Sorry for my english.
07-28-2012 09:54 AM
Find all posts by this user Quote this message in a reply
Post Reply 


Forum Jump:


User(s) browsing this thread: 1 Guest(s)