I agree with Sam here, in ever implementation i've done in the past 5 years we've disabled FTP and used http/ssl/htaccess or scp. SFTP is probably the best solution, if you really want it.
christopher On Thu, 14 Nov 2002, Sam Phillips wrote: > Date: Thu, 14 Nov 2002 14:35:15 -0800 > From: Sam Phillips <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: [RLUG] Securing FTP > > On Thu, Nov 14, 2002 at 02:18:24PM -0800, David Davis wrote: > > QUESTION: Does anybody have a better solution than #4? > > > > In our office there is no FTP allowed anymore. All user use SCP. > We have pretty much abandoned FTP for our clients, as well. We're > trying to steer them all towards using SCP for all file transfers too. > The only tricky part of all of this is the chroot. We use this toolkit: > > http://www.gsyc.inf.uc3m.es/~assman/jail/index.html > > Besides setting up the chroot environment the only system stuff you > really need to do is set the users shell to /usr/local/bin/jail. It's a > real simple package and does what you want well. > > There are many other ways to do this. I've found this package to be the > most painless way of doing it. > > -- Christopher K. Neitzert / 0xC10D222F / [EMAIL PROTECTED] _______________________________________________ RLUG mailing list [EMAIL PROTECTED] http://www.rlug.org/mailman/listinfo/rlug
