Maybe it's browser-dependent or whatever, but I cannot see the solution on experts-exchange either.
Anyway:
According to vsftpd source code, the vsftpd can use the same log format as wuftpd... and the posted example looks like it.
(If vsftpd is configured to use its own log format, the log will be much clearer, but more voluminous, which may be a problem in a high-traffic FTP server. Also, you may prefer wuftpd log format if you already have tools designed to process that format.)
First letter: transfer mode
a = ascii
b = binary
Underscore:
A letter in this position would indicate any special operations, like gzipping or tarring the data on-the-fly. vsftpd never does that, so this is always "_", meaning "no special operation".
Second letter: transfer direction
i = input (= upload = FTP PUT)
o = output (FTP GET)
Third letter: access mode
a = anonymous
g = guest user
r = regular user
After this letter, there should be the username (or if the connection is anonymous, whatever the user specified to the password prompt). I assume that nanoux has already identified this part and omitted it from his example.
"ftp 0 *": service name, authentication method and authentication user id (if applicable). These are not configurable in vsftpd, so this is a constant string that carries no useful information. It is there only to match wuftpd log format.
The last letter: completion status
c = completed
i = interrupted (transfer failed)
Source of this information:
ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-2.0.7/logging.cThe relevant function vsf_log_do_log_wuftpd_format() begins on line 174.
MK
MK
