pam_ftp is a PAM module which provides a pluggable anonymous ftp
mode of access.
This module intercepts the user's name and password. If the name
is ftp or anonymous, the user's password is broken up at the @
delimiter into a PAM_RUSER and a PAM_RHOST part; these pam-items
being set accordingly. The username (PAM_USER) is set to ftp. In
this case the module succeeds. Alternatively, the module sets the
PAM_AUTHTOK item with the entered password and fails.
This module is not safe and easily spoofable.
Print debug information.
Pay no attention to the email address of the user (if
Instead of ftp or anonymous, provide anonymous login to the
comma separated list of users: XXX,YYY,.... Should the
applicant enter one of these usernames the returned username
is set to the first in the list: XXX.
Add the following line to /etc/pam.d/ftpd to handle ftp style
# ftpd; add ftp-specifics. These lines enable anonymous ftp over
# standard UN*X access (the listfile entry blocks access to
# users listed in /etc/ftpusers)
auth sufficient pam_ftp.so
auth required pam_unix.so use_first_pass
auth required pam_listfile.so \
onerr=succeed item=user sense=deny file=/etc/ftpusers
This page is part of the linux-pam (Pluggable Authentication
Modules for Linux) project. Information about the project can be
found at ⟨http://www.linux-pam.org/⟩. If you have a bug report
for this manual page, see ⟨//www.linux-pam.org/⟩. This page was
obtained from the tarball Linux-PAM-1.3.0.tar.bz2 fetched from
⟨http://www.linux-pam.org/library/⟩ on 2021-04-01. If you
discover any rendering problems in this HTML version of the page,
or you believe there is a better or more up-to-date source for
the page, or you have corrections or improvements to the
information in this COLOPHON (which is not part of the original
manual page), send a mail to email@example.com
Linux-PAM Manual 04/01/2016 PAM_FTP(8)