[Gllug] Secure FTP Server?
Mark Lowes
hamster at korenwolf.net
Tue Dec 3 14:50:53 UTC 2002
On Tue, 2002-12-03 at 14:26, rich at annexia.org wrote:
> On Tue, Dec 03, 2002 at 01:41:31PM +0000, Mark Lowes wrote:
> > On Tue, 2002-12-03 at 11:15, rich at annexia.org wrote:
> > > If you are uber-security-conscious, I'd suggest that you use the
> >
> > Don't run an ftpd, that or break rfc compliance so you don't support
> > ftp-data on port 20 so the daemon can be started with no root privs at
> > all.
>
> Indeed. The requirements of RFC 959 should be rejected here, because
> they gain you nothing, but lose you quite a lot.
However dropping root privs (and therefore port 20) does give a whole
new level of grief on the firewall front if you're providing a hosting
service of any form. BTDT.
--
The Flying Hamster <hamster at korenwolf.net> http://www.korenwolf.net/
Some people can tell what time it is by looking at the sun.
But I have never been able to make out the numbers.
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list