diff --git a/manifests/init.pp b/manifests/init.pp index fce36de..c14ec27 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -14,53 +14,125 @@ # } # class vsftpd ( - $confdir = $::vsftpd::params::confdir, - $package_name = $::vsftpd::params::package_name, - $service_name = $::vsftpd::params::service_name, - $template = 'vsftpd/vsftpd.conf.erb', + $confdir = $::vsftpd::params::confdir, + $package_name = $::vsftpd::params::package_name, + $service_name = $::vsftpd::params::service_name, + $template = 'vsftpd/vsftpd.conf.erb', + # vsftpd.conf options - $anonymous_enable = 'YES', - $local_enable = 'YES', - $write_enable = 'YES', - $local_umask = '022', - $anon_upload_enable = 'NO', - $anon_mkdir_write_enable = 'NO', - $dirmessage_enable = 'YES', - $xferlog_enable = 'YES', - $connect_from_port_20 = 'YES', - $chown_uploads = 'NO', - $chown_username = undef, - $xferlog_file = '/var/log/vsftpd.log', - $xferlog_std_format = 'YES', - $idle_session_timeout = '600', - $data_connection_timeout = '120', - $nopriv_user = undef, - $async_abor_enable = 'NO', - $ascii_upload_enable = 'NO', - $ascii_download_enable = 'NO', - $ftpd_banner = undef, - $chroot_local_user = 'NO', - $chroot_list_enable = 'NO', - $chroot_list_file = '/etc/vsftpd/chroot_list', - $ls_recurse_enable = 'NO', - $listen = 'YES', - $listen_port = undef, - $pam_service_name = 'vsftpd', - $userlist_enable = 'YES', - $userlist_deny = undef, - $tcp_wrappers = 'YES', - $hide_file = undef, - $hide_ids = 'NO', - $setproctitle_enable = 'NO', - $text_userdb_names = 'NO', - $max_clients = undef, - $max_per_ip = undef, - $pasv_min_port = undef, - $pasv_max_port = undef, - $ftp_username = undef, - $banner_file = undef, - $allow_writeable_chroot = undef, - $directives = {}, + $anonymous_enable = $::vsftpd::params::anonymous_enable, + $local_enable = $::vsftpd::params::local_enable, + $write_enable = $::vsftpd::params::write_enable, + $local_umask = $::vsftpd::params::local_umask, + $anon_upload_enable = $::vsftpd::params::anon_upload_enable, + $anon_mkdir_write_enable = $::vsftpd::params::anon_mkdir_write_enable, + $dirmessage_enable = $::vsftpd::params::dirmessage_enable, + $xferlog_enable = $::vsftpd::params::xferlog_enable, + $connect_from_port_20 = $::vsftpd::params::connect_from_port_20, + $chown_uploads = $::vsftpd::params::chown_uploads, + $chown_username = $::vsftpd::params::chown_username, + $xferlog_file = $::vsftpd::params::xferlog_file, + $xferlog_std_format = $::vsftpd::params::xferlog_std_format, + $idle_session_timeout = $::vsftpd::params::idle_session_timeout, + $data_connection_timeout = $::vsftpd::params::data_connection_timeout, + $nopriv_user = $::vsftpd::params::nopriv_user, + $async_abor_enable = $::vsftpd::params::async_abor_enable, + $ascii_upload_enable = $::vsftpd::params::ascii_upload_enable, + $ascii_download_enable = $::vsftpd::params::ascii_download_enable, + $ftpd_banner = $::vsftpd::params::ftpd_banner, + $chroot_local_user = $::vsftpd::params::chroot_local_user, + $chroot_list_enable = $::vsftpd::params::chroot_list_enable, + $chroot_list_file = $::vsftpd::params::chroot_list_file, + $ls_recurse_enable = $::vsftpd::params::ls_recurse_enable, + $listen = $::vsftpd::params::listen, + $listen_port = $::vsftpd::params::listen_port, + $pam_service_name = $::vsftpd::params::pam_service_name, + $userlist_enable = $::vsftpd::params::userlist_enable, + $userlist_deny = $::vsftpd::params::userlist_deny, + $tcp_wrappers = $::vsftpd::params::tcp_wrappers, + $hide_file = $::vsftpd::params::hide_file, + $hide_ids = $::vsftpd::params::hide_ids, + $setproctitle_enable = $::vsftpd::params::setproctitle_enable, + $text_userdb_names = $::vsftpd::params::text_userdb_names, + $max_clients = $::vsftpd::params::max_clients, + $max_per_ip = $::vsftpd::params::max_per_ip, + $pasv_min_port = $::vsftpd::params::pasv_min_port, + $pasv_max_port = $::vsftpd::params::pasv_max_port, + $ftp_username = $::vsftpd::params::ftp_username, + $banner_file = $::vsftpd::params::banner_file, + $allow_writeable_chroot = $::vsftpd::params::allow_writeable_chroot, + $ssl_request_cert = $::vsftpd::params::ssl_request_cert, + $anon_world_readable_only = $::vsftpd::params::anon_world_readable_only, + $background = $::vsftpd::params::background, + $check_shell = $::vsftpd::params::check_shell, + $chmod_enable = $::vsftpd::params::chmod_enable, + $deny_email_enable = $::vsftpd::params::deny_email_enable, + $dirlist_enable = $::vsftpd::params::dirlist_enable, + $download_enable = $::vsftpd::params::download_enable, + $dual_log_enable = $::vsftpd::params::dual_log_enable, + $force_dot_files = $::vsftpd::params::force_dot_files, + $force_anon_data_ssl = $::vsftpd::params::force_anon_data_ssl, + $force_anon_logins_ssl = $::vsftpd::params::force_anon_logins_ssl, + $force_local_data_ssl = $::vsftpd::params::force_local_data_ssl, + $force_local_logins_ssl = $::vsftpd::params::force_local_logins_ssl, + $guest_enable = $::vsftpd::params::guest_enable, + $lock_upload_files = $::vsftpd::params::lock_upload_files, + $log_ftp_protocol = $::vsftpd::params::log_ftp_protocol, + $mdtm_write = $::vsftpd::params::mdtm_write, + $no_anon_password = $::vsftpd::params::no_anon_password, + $no_log_lock = $::vsftpd::params::no_log_lock, + $one_process_model = $::vsftpd::params::one_process_model, + $passwd_chroot_enable = $::vsftpd::params::passwd_chroot_enable, + $pasv_addr_resolve = $::vsftpd::params::pasv_addr_resolve, + $pasv_enable = $::vsftpd::params::pasv_enable, + $pasv_promiscuous = $::vsftpd::params::pasv_promiscuous, + $port_enable = $::vsftpd::params::port_enable, + $port_promiscuous = $::vsftpd::params::port_promiscuous, + $reverse_lookup_enable = $::vsftpd::params::reverse_lookup_enable, + $run_as_launching_user = $::vsftpd::params::run_as_launching_user, + $secure_email_list_enable = $::vsftpd::params::secure_email_list_enable, + $session_support = $::vsftpd::params::session_support, + $ssl_enable = $::vsftpd::params::ssl_enable, + $ssl_sslv2 = $::vsftpd::params::ssl_sslv2, + $ssl_sslv3 = $::vsftpd::params::ssl_sslv3, + $ssl_tlsv1 = $::vsftpd::params::ssl_tlsv1, + $syslog_enable = $::vsftpd::params::syslog_enable, + $tilde_user_enable = $::vsftpd::params::tilde_user_enable, + $use_localtime = $::vsftpd::params::use_localtime, + $use_sendfile = $::vsftpd::params::use_sendfile, + $userlist_log = $::vsftpd::params::userlist_log, + $virtual_use_local_privs = $::vsftpd::params::virtual_use_local_privs, + $accept_timeout = $::vsftpd::params::accept_timeout, + $anon_max_rate = $::vsftpd::params::anon_max_rate, + $anon_umask = $::vsftpd::params::anon_umask, + $connect_timeout = $::vsftpd::params::connect_timeout, + $delay_failed_login = $::vsftpd::params::delay_failed_login, + $delay_successful_login = $::vsftpd::params::delay_successful_login, + $file_open_mode = $::vsftpd::params::file_open_mode, + $ftp_data_port = $::vsftpd::params::ftp_data_port, + $local_max_rate = $::vsftpd::params::local_max_rate, + $max_login_fails = $::vsftpd::params::max_login_fails, + $trans_chunk_size = $::vsftpd::params::trans_chunk_size, + $anon_root = $::vsftpd::params::anon_root, + $banned_email_file = $::vsftpd::params::banned_email_file, + $cmds_allowed = $::vsftpd::params::cmds_allowed, + $deny_file = $::vsftpd::params::deny_file, + $dsa_cert_file = $::vsftpd::params::dsa_cert_file, + $dsa_private_key_file = $::vsftpd::params::dsa_private_key_file, + $email_password_file = $::vsftpd::params::email_password_file, + $guest_username = $::vsftpd::params::guest_username, + $local_root = $::vsftpd::params::local_root, + $message_file = $::vsftpd::params::message_file, + $pasv_address = $::vsftpd::params::pasv_address, + $rsa_cert_file = $::vsftpd::params::rsa_cert_file, + $rsa_private_key_file = $::vsftpd::params::rsa_private_key_file, + $secure_chroot_dir = $::vsftpd::params::secure_chroot_dir, + $ssl_ciphers = $::vsftpd::params::ssl_ciphers, + $user_config_dir = $::vsftpd::params::user_config_dir, + $user_sub_token = $::vsftpd::params::user_sub_token, + $userlist_file = $::vsftpd::params::userlist_file, + $vsftpd_log_file = $::vsftpd::params::vsftpd_log_file, + $directives = {}, ) inherits ::vsftpd::params { package { $package_name: ensure => installed } diff --git a/manifests/params.pp b/manifests/params.pp index e17a800..103849e 100644 --- a/manifests/params.pp +++ b/manifests/params.pp @@ -20,5 +20,122 @@ } } + $anonymous_enable = 'YES' + $local_enable = 'NO' + $write_enable = 'NO' + $local_umask = '077' + $anon_upload_enable = 'NO' + $anon_mkdir_write_enable = 'NO' + $dirmessage_enable = 'NO' + $xferlog_enable = 'NO' + $connect_from_port_20 = 'NO' + $chown_uploads = 'NO' + $chown_username = 'root' + $xferlog_file = '/var/log/xferlog' + $xferlog_std_format = 'NO' + $idle_session_timeout = '300' + $data_connection_timeout = '300' + $nopriv_user = 'nobody' + $async_abor_enable = 'NO' + $ascii_upload_enable = 'NO' + $ascii_download_enable = 'NO' + $ftpd_banner = undef + $chroot_local_user = 'NO' + $chroot_list_enable = 'NO' + $chroot_list_file = '/etc/vsftpd/chroot_list' + $ls_recurse_enable = 'NO' + $listen = 'NO' + $listen_port = '21' + $pam_service_name = 'ftp' + $userlist_enable = 'NO' + $userlist_deny = 'YES' + $tcp_wrappers = 'NO' + $hide_file = undef + $hide_ids = 'NO' + $setproctitle_enable = 'NO' + $text_userdb_names = 'NO' + $max_clients = '0' + $max_per_ip = '0' + $pasv_min_port = '0' + $pasv_max_port = '0' + $ftp_username = 'ftp' + $banner_file = undef + $ssl_request_cert = 'YES' + $allow_writeable_chroot = undef + $anon_other_write_enable = 'NO' + $anon_world_readable_only = 'YES' + $background = 'YES' + $check_shell = 'YES' + $chmod_enable = 'YES' + $deny_email_enable = 'NO' + $dirlist_enable = 'YES' + $download_enable = 'YES' + $dual_log_enable = 'NO' + $force_dot_files = 'NO' + $force_anon_data_ssl = 'NO' + $force_anon_logins_ssl = 'NO' + $force_local_data_ssl = 'YES' + $force_local_logins_ssl = 'YES' + $guest_enable = 'NO' + $listen_ipv6 = 'NO' + $lock_upload_files = 'NO' + $log_ftp_protocol = 'NO' + $mdtm_write = 'YES' + $no_anon_password = 'NO' + $no_log_lock = 'NO' + $one_process_model = 'NO' + $passwd_chroot_enable = 'NO' + $pasv_addr_resolve = 'NO' + $pasv_enable = 'YES' + $pasv_promiscuous = 'NO' + $port_enable = 'YES' + $port_promiscuous = 'NO' + $reverse_lookup_enable = 'YES' + $run_as_launching_user = 'NO' + $secure_email_list_enable = 'NO' + $session_support = 'NO' + $ssl_enable = 'NO' + $ssl_sslv2 = 'NO' + $ssl_sslv3 = 'NO' + $ssl_tlsv1 = 'YES' + $syslog_enable = 'NO' + $tilde_user_enable = 'NO' + $use_localtime = 'NO' + $use_sendfile = 'YES' + $userlist_log = 'NO' + $virtual_use_local_privs = 'NO' + $accept_timeout = '60' + $anon_max_rate = '0' + $anon_umask = '077' + $connect_timeout = '60' + $delay_failed_login = '1' + $delay_successful_login = '0' + $file_open_mode = '0666' + $ftp_data_port = '20' + $local_max_rate = '0' + $max_login_fails = '3' + $trans_chunk_size = '0' + $anon_root = undef + $banned_email_file = '/etc/vsftpd/banned_emails' + $cmds_allowed = undef + $deny_file = undef + $dsa_cert_file = undef + $dsa_private_key_file = undef + $email_password_file = '/etc/vsftpd/email_passwords' + $guest_username = 'ftp' + $listen_address = undef + $listen_address6 = undef + $local_root = undef + $message_file = '.message' + $pasv_address = undef + $rsa_cert_file = '/usr/share/ssl/certs/vsftpd.pem' + $rsa_private_key_file = undef + $secure_chroot_dir = '/usr/share/empty' + $ssl_ciphers = 'DES-CBC3-SHA' + $user_config_dir = undef + $user_sub_token = undef + $userlist_file = '/etc/vsftpd/user_list' + $vsftpd_log_file = '/var/log/vsftpd.log' + } diff --git a/templates/vsftpd.conf.erb b/templates/vsftpd.conf.erb index b6594fa..48ae030 100644 --- a/templates/vsftpd.conf.erb +++ b/templates/vsftpd.conf.erb @@ -1,3 +1,7 @@ +# This file is being maintained by Puppet. +# DO NOT EDIT +# +# # Example config file /etc/vsftpd/vsftpd.conf # # The default compiled in settings are fairly paranoid. This sample file @@ -204,3 +208,222 @@ allow_writeable_chroot=<%= @allow_writeable_chroot %> <% @directives.reject {|key,value| value == :undef}.sort_by {|key,value| key}.each do |key,value| -%> <%= key %>=<%= value %> <% end -%> +<% if @ssl_request_cert != scope.lookupvar('vsftpd::params::ssl_request_cert') -%> +ssl_request_cert=<%= @ssl_request_cert %> +<% end -%> +<% if @anon_world_readable_only != scope.lookupvar('vsftpd::params::anon_world_readable_only') -%> +anon_world_readable_only=<%= @anon_world_readable_only %> +<% end -%> +<% if @background != scope.lookupvar('vsftpd::params::background') -%> +background=<%= @background %> +<% end -%> +<% if @check_shell != scope.lookupvar('vsftpd::params::check_shell') -%> +check_shell=<%= @check_shell %> +<% end -%> +<% if @chmod_enable != scope.lookupvar('vsftpd::params::chmod_enable') -%> +chmod_enable=<%= @chmod_enable %> +<% end -%> +<% if @deny_email_enable != scope.lookupvar('vsftpd::params::deny_email_enable') -%> +deny_email_enable=<%= @deny_email_enable %> +<% end -%> +<% if @dirlist_enable != scope.lookupvar('vsftpd::params::dirlist_enable') -%> +dirlist_enable=<%= @dirlist_enable %> +<% end -%> +<% if @download_enable != scope.lookupvar('vsftpd::params::download_enable') -%> +download_enable=<%= @download_enable %> +<% end -%> +<% if @dual_log_enable != scope.lookupvar('vsftpd::params::dual_log_enable') -%> +dual_log_enable=<%= @dual_log_enable %> +<% end -%> +<% if @force_dot_files != scope.lookupvar('vsftpd::params::force_dot_files') -%> +force_dot_files=<%= @force_dot_files %> +<% end -%> +<% if @force_anon_data_ssl != scope.lookupvar('vsftpd::params::force_anon_data_ssl') -%> +force_anon_data_ssl=<%= @force_anon_data_ssl %> +<% end -%> +<% if @force_anon_logins_ssl != scope.lookupvar('vsftpd::params::force_anon_logins_ssl') -%> +force_anon_logins_ssl=<%= @force_anon_logins_ssl %> +<% end -%> +<% if @force_local_data_ssl != scope.lookupvar('vsftpd::params::force_local_data_ssl') -%> +force_local_data_ssl=<%= @force_local_data_ssl %> +<% end -%> +<% if @force_local_logins_ssl != scope.lookupvar('vsftpd::params::force_local_logins_ssl') -%> +force_local_logins_ssl=<%= @force_local_logins_ssl %> +<% end -%> +<% if @guest_enable != scope.lookupvar('vsftpd::params::guest_enable') -%> +guest_enable=<%= @guest_enable %> +<% end -%> +<% if @lock_upload_files != scope.lookupvar('vsftpd::params::lock_upload_files') -%> +lock_upload_files=<%= @lock_upload_files %> +<% end -%> +<% if @log_ftp_protocol != scope.lookupvar('vsftpd::params::log_ftp_protocol') -%> +log_ftp_protocol=<%= @log_ftp_protocol %> +<% end -%> +<% if @mdtm_write != scope.lookupvar('vsftpd::params::mdtm_write') -%> +mdtm_write=<%= @mdtm_write %> +<% end -%> +<% if @no_anon_password != scope.lookupvar('vsftpd::params::no_anon_password') -%> +no_anon_password=<%= @no_anon_password %> +<% end -%> +<% if @no_log_lock != scope.lookupvar('vsftpd::params::no_log_lock') -%> +no_log_lock=<%= @no_log_lock %> +<% end -%> +<% if @one_process_model != scope.lookupvar('vsftpd::params::one_process_model') -%> +one_process_model=<%= @one_process_model %> +<% end -%> +<% if @passwd_chroot_enable != scope.lookupvar('vsftpd::params::passwd_chroot_enable') -%> +passwd_chroot_enable=<%= @passwd_chroot_enable %> +<% end -%> +<% if @pasv_addr_resolve != scope.lookupvar('vsftpd::params::pasv_addr_resolve') -%> +pasv_addr_resolve=<%= @pasv_addr_resolve %> +<% end -%> +<% if @pasv_enable != scope.lookupvar('vsftpd::params::pasv_enable') -%> +pasv_enable=<%= @pasv_enable %> +<% end -%> +<% if @pasv_promiscuous != scope.lookupvar('vsftpd::params::pasv_promiscuous') -%> +pasv_promiscuous=<%= @pasv_promiscuous %> +<% end -%> +<% if @port_enable != scope.lookupvar('vsftpd::params::port_enable') -%> +port_enable=<%= @port_enable %> +<% end -%> +<% if @port_promiscuous != scope.lookupvar('vsftpd::params::port_promiscuous') -%> +port_promiscuous=<%= @port_promiscuous %> +<% end -%> +<% if @reverse_lookup_enable != scope.lookupvar('vsftpd::params::reverse_lookup_enable') -%> +reverse_lookup_enable=<%= @reverse_lookup_enable %> +<% end -%> +<% if @run_as_launching_user != scope.lookupvar('vsftpd::params::run_as_launching_user') -%> +run_as_launching_user=<%= @run_as_launching_user %> +<% end -%> +<% if @secure_email_list_enable != scope.lookupvar('vsftpd::params::secure_email_list_enable') -%> +secure_email_list_enable=<%= @secure_email_list_enable %> +<% end -%> +<% if @session_support != scope.lookupvar('vsftpd::params::session_support') -%> +session_support=<%= @session_support %> +<% end -%> +<% if @ssl_enable != scope.lookupvar('vsftpd::params::ssl_enable') -%> +ssl_enable=<%= @ssl_enable %> +<% end -%> +<% if @ssl_sslv2 != scope.lookupvar('vsftpd::params::ssl_sslv2') -%> +ssl_sslv2=<%= @ssl_sslv2 %> +<% end -%> +<% if @ssl_sslv3 != scope.lookupvar('vsftpd::params::ssl_sslv3') -%> +ssl_sslv3=<%= @ssl_sslv3 %> +<% end -%> +<% if @ssl_tlsv1 != scope.lookupvar('vsftpd::params::ssl_tlsv1') -%> +ssl_tlsv1=<%= @ssl_tlsv1 %> +<% end -%> +<% if @syslog_enable != scope.lookupvar('vsftpd::params::syslog_enable') -%> +syslog_enable=<%= @syslog_enable %> +<% end -%> +<% if @tilde_user_enable != scope.lookupvar('vsftpd::params::tilde_user_enable') -%> +tilde_user_enable=<%= @tilde_user_enable %> +<% end -%> +<% if @use_localtime != scope.lookupvar('vsftpd::params::use_localtime') -%> +use_localtime=<%= @use_localtime %> +<% end -%> +<% if @use_sendfile != scope.lookupvar('vsftpd::params::use_sendfile') -%> +use_sendfile=<%= @use_sendfile %> +<% end -%> +<% if @userlist_log != scope.lookupvar('vsftpd::params::userlist_log') -%> +userlist_log=<%= @userlist_log %> +<% end -%> +<% if @virtual_use_local_privs != scope.lookupvar('vsftpd::params::virtual_use_local_privs') -%> +virtual_use_local_privs=<%= @virtual_use_local_privs %> +<% end -%> +<% if @accept_timeout != scope.lookupvar('vsftpd::params::accept_timeout') -%> +accept_timeout=<%= @accept_timeout %> +<% end -%> +<% if @anon_max_rate != scope.lookupvar('vsftpd::params::anon_max_rate') -%> +anon_max_rate=<%= @anon_max_rate %> +<% end -%> +<% if @anon_umask != scope.lookupvar('vsftpd::params::anon_umask') -%> +anon_umask=<%= @anon_umask %> +<% end -%> +<% if @connect_timeout != scope.lookupvar('vsftpd::params::connect_timeout') -%> +connect_timeout=<%= @connect_timeout %> +<% end -%> +<% if @delay_failed_login != scope.lookupvar('vsftpd::params::delay_failed_login') -%> +delay_failed_login=<%= @delay_failed_login %> +<% end -%> +<% if @delay_successful_login != scope.lookupvar('vsftpd::params::delay_successful_login') -%> +delay_successful_login=<%= @delay_successful_login %> +<% end -%> +<% if @file_open_mode != scope.lookupvar('vsftpd::params::file_open_mode') -%> +file_open_mode=<%= @file_open_mode %> +<% end -%> +<% if @ftp_data_port != scope.lookupvar('vsftpd::params::ftp_data_port') -%> +ftp_data_port=<%= @ftp_data_port %> +<% end -%> +<% if @local_max_rate != scope.lookupvar('vsftpd::params::local_max_rate') -%> +local_max_rate=<%= @local_max_rate %> +<% end -%> +<% if @max_login_fails != scope.lookupvar('vsftpd::params::max_login_fails') -%> +max_login_fails=<%= @max_login_fails %> +<% end -%> +<% if @trans_chunk_size != scope.lookupvar('vsftpd::params::trans_chunk_size') -%> +trans_chunk_size=<%= @trans_chunk_size %> +<% end -%> +<% if @anon_root -%> +anon_root=<%= @anon_root %> +<% end -%> +<% if @banned_email_file != scope.lookupvar('vsftpd::params::banned_email_file') -%> +banned_email_file=<%= @banned_email_file %> +<% end -%> +<% if @cmds_allowed -%> +cmds_allowed=<%= @cmds_allowed %> +<% end -%> +<% if @deny_file -%> +deny_file=<%= @deny_file %> +<% end -%> +<% if @dsa_cert_file -%> +dsa_cert_file=<%= @dsa_cert_file %> +<% end -%> +<% if @dsa_private_key_file -%> +dsa_private_key_file=<%= @dsa_private_key_file %> +<% end -%> +<% if @email_password_file != scope.lookupvar('vsftpd::params::email_password_file') -%> +email_password_file=<%= @email_password_file %> +<% end -%> +<% if @guest_username != scope.lookupvar('vsftpd::params::guest_username') -%> +guest_username=<%= @guest_username %> +<% end -%> +<% if @listen_address -%> +listen_address=<%= @dsten_address %> +<% end -%> +<% if @listen_address6 -%> +listen_address6=<%= @dsten_address6 %> +<% end -%> +<% if @local_root -%> +local_root=<%= @local_root %> +<% end -%> +<% if @message_file != scope.lookupvar('vsftpd::params::message_file') -%> +message_file=<%= @message_file %> +<% end -%> +<% if @pasv_address -%> +pasv_address=<%= @pasv_address %> +<% end -%> +<% if @rsa_cert_file != scope.lookupvar('vsftpd::params::rsa_cert_file') -%> +rsa_cert_file=<%= @rsa_cert_file %> +<% end -%> +<% if @rsa_private_key_file -%> +rsa_private_key_file=<%= @rsa_private_key_file %> +<% end -%> +<% if @secure_chroot_dir != scope.lookupvar('vsftpd::params::secure_chroot_dir') -%> +secure_chroot_dir=<%= @secure_chroot_dir %> +<% end -%> +<% if @ssl_ciphers != scope.lookupvar('vsftpd::params::ssl_ciphers') -%> +ssl_ciphers=<%= @ssl_ciphers %> +<% end -%> +<% if @user_config_dir -%> +user_config_dir=<%= @user_config_dir %> +<% end -%> +<% if @user_sub_token -%> +user_sub_token=<%= @user_sub_token %> +<% end -%> +<% if @userlist_file != scope.lookupvar('vsftpd::params::userlist_file') -%> +userlist_file=<%= @userlist_file %> +<% end -%> +<% if @vsftpd_log_file != scope.lookupvar('vsftpd::params::vsftpd_log_file') -%> +vsftpd_log_file=<%= @vsftpd_log_file %> +<% end -%>