Thursday, December 15, 2011

vsFTP MySQL Virtual with Auto-Create Home Directories

We get this error because virtual user directory does not exist.  Attempts at directory auto creation via configuration file fail:

331 Please specify the password.
500 OOPS: cannot change directory:/opt/ftp/testuser
Login failed.

We want MySQL user dir's to be auto-created when a valid user tries to login you will need to change your pam configuration to:


# Auth in MySQL
auth requisite user=vsftpd-ro passwd=readonly host=localhost db=vsftpd table=accounts usercolumn=username passwdcolumn=pass crypt=0
auth required onerr=success dir=/etc/pam-script

# Account in MySQL
account required user=vsftpd-ro passwd=readonly host=localhost db=vsftpd table=accounts usercolumn=username passwdcolumn=pass crypt=0

$ cat /etc/pam-script/pam_script_auth

if [ ! -d "/opt/ftp/$PAM_USER" ]; then
  /usr/bin/env mkdir /opt/ftp/$PAM_USER
  /usr/bin/env chown ftp:ftp /opt/ftp/$PAM_USER

Small changes to SPEC file for 64 bit location and packaging:

# see for details
# and sub-package details for maximum-rpm too
Summary: a PAM module that can invoke scripts within the PAM stack
Name: pam-script
Version: 1.1.4
Release: 1.local
License: GPL
Group: System Environment/Base
BuildRoot: /var/tmp/%{name}-buildroot
Provides: pam-script-1.1.4
Requires: pam
pam-script allows you to execute scripts during  authorization,  passwd
changes, and on session opening or closing; which can affect the PAM stack.

%package examples
Summary: some pam-script example scripts and docs
Group: System Environment/Base
%description examples
logscript - simply records the various PAM_* environment variables to
a log file.  Useful for studying how the various PAM modules work together.
tally - a pam-script version of the pam-tally module with much of the
same options.  It's a perl script and is useful for hacking your own
# pam-script
./configure    --prefix=/usr                    \
        --libdir=/lib64/security                \
        --sysconfdir=/etc/pam-script            \

make DESTDIR=$RPM_BUILD_ROOT install-man7
make DESTDIR=$RPM_BUILD_ROOT install-examples

%files examples


