Re: [fw-wiz] OT: FTP Servers

From: Florin Andrei (florin_at_sgi.com)
Date: 06/11/03

  • Next message: John Smith: "[fw-wiz] OT: Summary - FTP Servers" 
    To: firewall-wizards@honor.icsalabs.com
Date: 11 Jun 2003 11:53:00 -0700

    On Fri, 2003-06-06 at 11:51, John Smith wrote:

    > If WU-FTPD is not a good FTP server to use or there are better (i.e.
    > - more secure) servers out there, what would you suggest? The needs for
    > the site are anonymous FTP, potentially some 'real' FTP users, and up to
    > 500 simultaneous FTP connections. And of course the FTP server should
    > be free. :-)

    There are several options, depending on your needs. Remember, the better
    the security, the worse the configurability/features.

    1. Publicfile
    It's read-only, anonymous-only. Extremely secure. No features or
    configurability whatsoever. Period.
    http://cr.yp.to/publicfile.html

    2. vsftpd
    Can be configured for uploads (so it's read-write). Can be configured
    for non-anonymous users. Very simple, so no complex setups with fancy
    rules on the directories.
    http://vsftpd.beasts.org/
    It's also the FTP server of choice in Linux Red Hat 9.

    3. PureFTPd
    More complex than vsftpd. Allows complex authentication schemes. Can do
    chroot on users, quota, bandwidth throttling.
    http://www.pureftpd.org/

    Beyond that, there are many other options (WU-FTPD, ProFTPD) but i don't
    have a good feeling (security-wise) about them, even though i used to
    use them a lot in the past. 

    -- 
Florin Andrei
"The concept of firewalls has started to have an effect at the
cultural level: I once heard a kid on a train describe his mother
as a 'stateful firewall' to one of his buddies." - Marcus Ranum
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
  • Next message: John Smith: "[fw-wiz] OT: Summary - FTP Servers"

    Relevant Pages

    • Re: Folder sharing and ZA
      ... rather than have a shared folder you could set up either an FTP ... server or Web server on your machine. ... but be aware that regular FTP isn't very secure - passwords can be ...
      (comp.security.firewalls)
    • RE: [OT] M$ collaborates with Suse
      ... Most hosting facilities do allow FrontPage and/or FTP access...FrontPage ... Remote Administration to an actual server can be done with a Terminal ... Secure Administration on the inside can be done with Scripting. ... decent free SSH Servers out there for Windows and I like freeSSHd. ...
      (Debian-User)
    • Re: secure FTP
      ... You can also give exclusive NTFS permission on that ... folder that is share for ftp. ... To use FTP and make it secure, you need to use a different third party FTP ... I have w2k server with standar FTP server, I would like to make this FTP ...
      (microsoft.public.inetserver.iis.ftp)
    • Re: WebDAV popularity
      ... >For instance I can't, as I can with proftpd, restrict what commands the ... >user can run on the server. ... it is one reason people stick with ftp ... use of ssl/tls to secure the command and/or data channels. ...
      (comp.security.ssh)
    • Help with IPFW + NATD + Passive FTP
      ... passive FTP connections through IPFW with NATD enabled. ... $cmd 005 allow all from any to any via dc0 ... # Interface facing Public internet ... # Allow out access to my ISP's Domain name server. ...
      (freebsd-questions)