Re: FTP directory security setup.

i'll try only the ip.
does the "deny all" restrict local ip such as 192.168.1.x? ,
if so I can test with that ip address, dlocking it and allowing it.
otherwise I need to find someone outside my network.

but to answer the questions.

yes, I do see other ip address' trying to connect.
the log shows several attempts to enter a user name and password from ip
address' in NY, TX, poland, etc...

"Bernard Cheah [MVP]" wrote:

NT4 :) Denied all but... should block all except those you entered.
It's been a while I look at NT4. can you just test it with ip address,
forget about the domain name restriction first.

can you connect with that IP ? do you see other IP connecting?

the restriction took place when user connect before auth. you are seeing
otherwise ?

--
Regards,
Bernard Cheah
http://www.iis.net/
http://msmvps.com/blogs/bernard/


"tdr" <tdr@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:5EAEE768-9C15-40E9-8B6D-D3BBB91FFB21@xxxxxxxxxxxxxxxx
I'm trying to stop hackers from trying to accessing my ftp server.

I've tried to use the 'directory serurity' tab and "denied all" but the
few
users I want to access my ftp site.
I've select "denied all but" and entered the ip address of one system and
the domain of the other ex. "mydomain.com" stopped the ftp server and
restarted it.
but
i still have hackers trying to login to my ftp server.

when does the "denied all " take effect? after they login? , I thought it
would not respond to any request to login, unless it was in the exceptions
list.
did I not set it up correctly or is this how the "denied all" works?

TIA

system info
nt 4.0 server sp 6a
iis 4.0
applied half of the "harden nt server" suggestion ( i.e. stopping unneeded
services and removing shares, etc)







.

Relevant Pages

  • Re: FTP directory security setup.
    ... I think it logged the connecting IP as well, ... i still have hackers trying to login to my ftp server. ...
    (microsoft.public.inetserver.iis.security)
  • Re: FTP Security login
    ... > By default, IE will auto login as anonymous user, if you see the login ... > Try login at the ftp server via ftp.exe ... ... >> basic yet my users cant get access. ... >> Sorry if this is a basic question I took a quick look at the posts in ...
    (microsoft.public.inetserver.iis.ftp)
  • Re: vsFTP on RH9
    ... I am beginning to think RH9 is just a huge junk pile. ... I needed an FTP server. ... I can only login anonymously and then I can't see any of the ... > Every time I change the config file I restart xinetd, ...
    (comp.os.linux.misc)
  • Re: IIS FTP server: 530 Login failed
    ... Can you login with ... I have also tried> to set up an FTP server on my home machine that is not part of a somain> and I get an error 530 there too. ... > "elziko" wrote in message ... >> The FTP site is set to accept only anonymous connections using the>> following account: ...
    (microsoft.public.inetserver.iis.ftp)
  • Re: FTP directory security setup.
    ... It's been a while I look at NT4. ... i still have hackers trying to login to my ftp server. ...
    (microsoft.public.inetserver.iis.security)