[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] ftp server "best practice"

To: SuSE-Security <suse-security@xxxxxxxx>
Subject: Re: [suse-security] ftp server "best practice"
From: Markus Gaugusch <markus@xxxxxxxxxxx>
Date: Thu, 24 Jul 2003 15:04:19 +0200 (CEST)
Delivered-to: mailing list suse-security@xxxxxxxx
Delivery-date: Thu, 24 Jul 2003 15:05:22 +0200
Envelope-to: suse@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <3F1FD492.1080000@xxxxxxxxxx>
List-help: <mailto:suse-security-help@suse.com>
List-post: <mailto:suse-security@suse.com>
List-subscribe: <mailto:suse-security-subscribe@suse.com>
List-unsubscribe: <mailto:suse-security-unsubscribe-suse=archive.cert.uni-stuttgart.de@suse.com>
Mailing-list: contact suse-security-help@xxxxxxxx; run by ezmlm
References: <3F1FD492.1080000@xxxxxxxxxx>

On Jul 24, Daniel Nilsson <dnilsson@xxxxxxxxxx> wrote:
> I'm tasked to add an ftp server to our companys "internet presence", the
> ftp server will need to have accounts on it since the data is not for
> the public. Currently our setup consists of a number of Linux firewalls
> for our 4 office locations that then in turn connects these 4 office
> locations using ipsec. In addition, at our main office location we have
> a DMZ with a webserver.
I would suggest to use a HTTP server (no problems with downloading, easy
protection of files using .htaccess. If the passwords are more sensitive,
use HTTPS.
For uploading use SFTP, a very good client program for windows is
FileZilla from http://filezilla.sf.net. Best of all: it's freeware and can
also be used as standard ftp client. You may also want to restrict access
to the sftp (ssh) server based on ip address to get maximum security.

Markus
-- 
__________________    /"\
Markus Gaugusch       \ /    ASCII Ribbon Campaign
markus@xxxxxxxxxxx     X     Against HTML Mail
                      / \

-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here

Follow-Ups:
- Re: [suse-security] ftp server "best practice"
  - From: Sigfred Håversen
- Re: [suse-security] ftp server "best practice"
  - From: Daniel Nilsson

References:
- [suse-security] ftp server "best practice"
  - From: Daniel Nilsson

Prev by Date: [suse-security] ftp server "best practice"
Next by Date: Re: [suse-security] ftp server "best practice"
Previous by thread: [suse-security] ftp server "best practice"
Next by thread: Re: [suse-security] ftp server "best practice"
Index(es):
- Date
- Thread