Subject: Re: FTP Access
From: James Zuelow (e5z8652@zuelow.net)
Date: Mon Oct 28 2002 - 22:36:26 AKST
On 28 Oct 2002 22:17:03 -0900
"Jon Reynolds" <jonr@destar.net> wrote:
>
> I am now needing to setup ftp access to one of my servers. I have heard
> horror stories of how insecure it is and am thinking of using sftp. Is
> this the recommended way of of doing ftp nowadays and what are some of
> the security issues to watch out for while granting this kind of access?
>
> Jon
>
sftp is part of the OpenSSH suite (probably the regular SSH as well, although I've only used OpenSSH myself) - it isn't intended for anonymous use like a public ftp server is, rather sftp simplifies file transfer for ssh clients. It uses the same authentication mechanism that ssh does, so you would have to set up an account for each person who will be connecting to your server.
If you have a limited number of people who need ftp access, and these people would have a shell account on your machine anyway, sftp would be a good solution. If you need public (anonymous) ftp access, then it won't work. In the latter case, the only thing you can do is be very careful with how you set up your ftp server. Choose the right daemon, chroot your clients, etc.
Cheers,
James
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
This archive was generated by hypermail 2a23 : Mon Oct 28 2002 - 22:36:38 AKST