Add vsftpd Dockerfile and config.

Can `docker run` and login with lftp client.

test/dummy-services/vsftpd/Dockerfile

@@ -0,0 +1,22 @@
+#
+# Dockerfile for vsftpd
+#
+
+FROM alpine:3.19.1
+
+RUN set -xe \
+    && apk add -U vsftpd \
+    && rm -rf /var/cache/apk/*
+
+ADD vsftpd.conf vsftpd.email_passwords vsftpd.banner /etc/vsftpd/
+RUN ln -s /etc/vsftpd/vsftpd.email_passwords /etc/vsftpd.email_passwords
+
+RUN install -d -m u+wx,u-r,g+rwxs,o-rwx -o ftp -g root /var/lib/ftp/incoming
+RUN ln -sf /proc/1/fd/1 /var/log/vsftpd.log
+VOLUME /var/lib/ftp/incoming
+WORKDIR /var/lib/ftp
+
+EXPOSE 21
+
+COPY run-vsftpd.sh  /usr/sbin
+CMD ["/usr/sbin/run-vsftpd.sh"]

test/dummy-services/vsftpd/README.md

@@ -0,0 +1,3 @@
+This container is used for testing systems that hit an FTPS (not SFTP) endpoint.
+
+Credit to https://github.com/ome/vsftpd-anonymous-upload-docker.

test/dummy-services/vsftpd/run-vsftpd.sh

@@ -0,0 +1,3 @@
+#! /bin/sh
+
+/usr/sbin/vsftpd /etc/vsftpd/vsftpd.conf

test/dummy-services/vsftpd/vsftpd.banner

@@ -0,0 +1,32 @@
+***************************************************************
+Anonymous FTP Upload
+
+Place individual files in /incoming. If you intend
+to upload a number of files, create a subdirectory
+under /incoming.  Only login as "anonymous" with a
+valid password is supported!
+
+Example session:
+
+	ftp> user anonymous
+	331 Please specify the password.
+	Password:
+	331 Please specify the password.
+	Password:
+	230 Login successful.
+	ftp> cd incoming
+	250 Directory successfully changed.
+	ftp> mkdir my-dataset
+	257 "/incoming/my-dataset" created
+	ftp> cd my-dataset
+	250 Directory successfully changed.
+	ftp> prompt
+	Interactive mode off.
+	ftp> mput *.tiff
+	local: 0001.tiff remote: 0001.tiff
+	227 Entering Passive Mode (172,17,0,19,82,46).
+	150 Ok to send data.
+	226 Transfer complete.
+	16070 bytes sent in 0.000634 secs (25347.00 Kbytes/sec)
+
+***************************************************************

test/dummy-services/vsftpd/vsftpd.conf

@@ -0,0 +1,133 @@
+# Example config file /etc/vsftpd/vsftpd.conf
+#
+# The default compiled in settings are fairly paranoid. This sample file
+# loosens things up a bit, to make the ftp daemon more usable.
+# Please see vsftpd.conf.5 for all compiled in defaults.
+#
+# READ THIS: This example file is NOT an exhaustive list of vsftpd options.
+# Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's
+# capabilities.
+#
+# Allow anonymous FTP? (Beware - allowed by default if you comment this out).
+anonymous_enable=YES
+#
+# Uncomment this to allow local users to log in.
+local_enable=NO
+#
+# Uncomment this to enable any form of FTP write command.
+write_enable=YES
+#
+# Default umask for local users is 077. You may wish to change this to 022,
+# if your users expect that (022 is used by most other ftpd's)
+local_umask=022
+#
+# Uncomment this to allow the anonymous FTP user to upload files. This only
+# has an effect if the above global write enable is activated. Also, you will
+# obviously need to create a directory writable by the FTP user.
+anon_upload_enable=YES
+
+anon_world_readable_only=YES
+hide_ids=YES
+#
+# Uncomment this if you want the anonymous FTP user to be able to create
+# new directories.
+anon_mkdir_write_enable=YES
+#
+# Activate directory messages - messages given to remote users when they
+# go into a certain directory.
+dirmessage_enable=YES
+#
+# Activate logging of uploads/downloads.
+xferlog_enable=YES
+#
+# Make sure PORT transfer connections originate from port 20 (ftp-data).
+connect_from_port_20=YES
+#
+# If you want, you can arrange for uploaded anonymous files to be owned by
+# a different user. Note! Using "root" for uploaded files is not
+# recommended!
+chown_uploads=YES
+chown_username=ftp
+chown_upload_mode=0660
+anon_umask=002
+#
+# You may override where the log file goes if you like. The default is shown
+# below.
+xferlog_file=/var/log/vsftpd.log
+#
+# If you want, you can have your log file in standard ftpd xferlog format.
+# Note that the default log file location is /var/log/xferlog in this case.
+xferlog_std_format=YES
+#
+# You may change the default value for timing out an idle session.
+#idle_session_timeout=600
+#
+# You may change the default value for timing out a data connection.
+#data_connection_timeout=120
+#
+# It is recommended that you define on your system a unique user which the
+# ftp server can use as a totally isolated and unprivileged user.
+nopriv_user=ftp
+#
+# Enable this and the server will recognise asynchronous ABOR requests. Not
+# recommended for security (the code is non-trivial). Not enabling it,
+# however, may confuse older FTP clients.
+#async_abor_enable=YES
+#
+# By default the server will pretend to allow ASCII mode but in fact ignore
+# the request. Turn on the below options to have the server actually do ASCII
+# mangling on files when in ASCII mode.
+# Beware that on some FTP servers, ASCII support allows a denial of service
+# attack (DoS) via the command "SIZE /big/file" in ASCII mode. vsftpd
+# predicted this attack and has always been safe, reporting the size of the
+# raw file.
+# ASCII mangling is a horrible feature of the protocol.
+#ascii_upload_enable=YES
+#ascii_download_enable=YES
+#
+# You may fully customise the login banner string:
+banner_file=/etc/vsftpd/vsftpd.banner
+#
+# You may specify a file of disallowed anonymous e-mail addresses. Apparently
+# useful for combatting certain DoS attacks.
+#deny_email_enable=YES
+# (default follows)
+#banned_email_file=/etc/vsftpd/banned_emails
+#
+# You may specify an explicit list of local users to chroot() to their home
+# directory. If chroot_local_user is YES, then this list becomes a list of
+# users to NOT chroot().
+#chroot_local_user=YES
+#chroot_list_enable=YES
+# (default follows)
+#chroot_list_file=/etc/vsftpd/chroot_list
+#
+# You may activate the "-R" option to the builtin ls. This is disabled by
+# default to avoid remote users being able to cause excessive I/O on large
+# sites. However, some broken FTP clients such as "ncftp" and "mirror" assume
+# the presence of the "-R" option, so there is a strong case for enabling it.
+#ls_recurse_enable=YES
+#
+# When "listen" directive is enabled, vsftpd runs in standalone mode and
+# listens on IPv4 sockets. This directive cannot be used in conjunction
+# with the listen_ipv6 directive.
+listen=YES
+#
+# This directive enables listening on IPv6 sockets. To listen on IPv4 and IPv6
+# sockets, you must run two copies of vsftpd with two configuration files.
+# Make sure, that one of the listen options is commented !!
+#listen_ipv6=YES
+
+#userlist_enable=YES
+
+# List allowed emails in /etc/vsftpd.email_passwords
+secure_email_list_enable=yes
+# This doesn't work, instead run "chmod 2370 incoming/"
+hide_file=incoming/*
+
+pasv_min_port=32022
+pasv_max_port=32041
+
+# Undocumented option that causes problems
+# https://delightlylinux.wordpress.com/2013/12/18/fixing-the-vsftpd-500-child-died-error-in-xubuntu-13-10/
+seccomp_sandbox=NO

test/dummy-services/vsftpd/vsftpd.email_passwords

@@ -0,0 +1 @@
+[email protected]