Re: recommendations for FTP server
Stephen Gran sent the following message Today:
SG> Hello all,
SG>
SG> I'd like the FTP server to not allow anonymous logins (which I assume
SG> most can do), chroot users to their home directories, and have some sort
SG> of encrypted connections (over SSL would be nice). I have thought about
SG> just using sftp, but currently ssh connections are rerouted to another
SG> box on the LAN, and I'd like to leave that set up as is, if possible.
SG>
SG> I see that proftpd is the example used in the 'securing Debian' manual,
SG> but it doesn't appear to be able to use SSL. OTOH, ftpd-ssl doesn't
SG> appear to do chroot'ing, at least not at a quick glance. Anybody know
SG> of one that combines these features? I suppose there is always stunnel,
SG> although I have never tried to use it for FTP.
Install SSH and give your friends shell accounts. SFTP is a
drop-in replacement for FTP. Generally, I never use FTP except to
make anonymous downloads available. There have been too many
problems with many FTP servers in the past. Adding SSL to a
standard FTP session also presents the problem that many standard
FTP clients (at least on Windows) do not support this
configuration.
--
Chris Caldwell
Information Systems Coordinator, Enterprise Systems
Information Systems and Services, The George Washington University
caldwell @ gwu . edu | +1 202.994.4674 (w) | +1 202.409.0878 (c)
http://asclepius.tops.gwu.edu | GPG key ID: 0xE52D0BE8
"Formal education can rarely improve the character of a scoundrel."
- Derek Bok, Harvard University
Reply to: