From ac65a757f0555c758e07a493f02514bc5a4bf691 Mon Sep 17 00:00:00 2001
From: Sergey Mironov <smironov@ecotelecom.ru>
Date: Tue, 9 Dec 2014 12:58:34 +0300
Subject: vsftpd.nix: add 'portPromiscuous' option

---
 nixos/modules/services/networking/vsftpd.nix | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/nixos/modules/services/networking/vsftpd.nix b/nixos/modules/services/networking/vsftpd.nix
index 62b6027c0120..447149552f48 100644
--- a/nixos/modules/services/networking/vsftpd.nix
+++ b/nixos/modules/services/networking/vsftpd.nix
@@ -68,6 +68,11 @@ let
       Only applies if <option>sslEnable</option> is true. Non anonymous (local) users
       must use a secure SSL connection for sending/receiving data on data connection.
     '')
+    (yesNoOption "portPromiscuous" "port_promiscuous" false ''
+      Set to YES if you want to disable the PORT security check that ensures that
+      outgoing data connections can only connect to the client. Only enable if you
+      know what you are doing!
+    '')
     (yesNoOption "ssl_tlsv1" "ssl_tlsv1" true  '' '')
     (yesNoOption "ssl_sslv2" "ssl_sslv2" false '' '')
     (yesNoOption "ssl_sslv3" "ssl_sslv3" false '' '')
-- 
cgit 1.4.1