From 960f54efca32157b0940b67c0ddd4bdb1901637b Mon Sep 17 00:00:00 2001
From: Alex Tavarez <admin@sukaato.moe>
Date: Sun, 16 Nov 2025 13:55:15 -0500
Subject: [PATCH] Added more directives to file to increase security of and
 friendliness of ProFTPd FTP server

---
 .../templates/proftpd/conf.d/global.conf.j2   | 21 +++++++++++++------
 1 file changed, 15 insertions(+), 6 deletions(-)

diff --git a/roles/bootstrap/templates/proftpd/conf.d/global.conf.j2 b/roles/bootstrap/templates/proftpd/conf.d/global.conf.j2
index 0357e94..b472fa3 100644
--- a/roles/bootstrap/templates/proftpd/conf.d/global.conf.j2
+++ b/roles/bootstrap/templates/proftpd/conf.d/global.conf.j2
@@ -1,22 +1,31 @@
 <Global>
-    PassivePorts {{ pasv_ports }}
+    # PassivePorts {{ pasv_ports }}
     RequireValidShell off
-    MaxInstances {{ max_conns }}
     {% if allow_symlinks %}
     ShowSymlinks on
     {% else %}
     ShowSymlinks off
     {% endif %}
+    AllowRetrieveRestart on
+    HiddenStores .%P- .frag
 
-    DisplayLogin WELCOME.msg
+    DisplayLogin /etc/proftpd/WELCOME.txt
     DisplayChdir .README.md true
-    DisplayConnect BANNER.msg
-    DisplayFileTransfer SUCCESS.msg
+    DisplayConnect /etc/proftpd/BANNER.txt
+    DisplayFileTransfer /etc/proftpd/SUCCESS.txt
+    DisplayReadme /etc/proftpd/ANNOUNCE.md
+    DisplayQuit /etc/proftpd/BYE.txt
 
     TimeoutNoTransfer 3600
     TimeoutStalled 210
     TimeoutIdle 1400
 
-    Umask 022 022
+    Umask 0022 0022
     AllowOverwrite on
+
+    <Directory />
+        <Limit ALL>
+            DenyAll
+        </Limit>
+    </Directory>
 </Global>
\ No newline at end of file