You can have a look at CERT's site for information
about these FTP commands.
E.g.; for PORT command, please see the following
links...
http://www.cert.org/advisories/CA-1997-27.html
http://www.cert.org/tech_tips/ftp_port_attacks.html
--- Charley Hamilton <[EMAIL PROTECTED]> wrote:
> I've used
-Original Message-
From: IDS Guy [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, November 13, 2002 12:55 PM
To: [EMAIL PROTECTED]
Subject: Secure FTP Server Search
Hello list,
I am looking for a secure FTP server which has less
vulnerabilities compared to IIS. Besides
functionality, it is
From: IDS Guy <[EMAIL PROTECTED]>
I am looking for a secure FTP server which has less
vulnerabilities compared to IIS. Besides
functionality, it is important to be tightly secure &
not to have some vulnerabilities related with FTP
commands such as FTP PORT / SITE / NLIST.
Sounds like ssh (specifi
I've used sshd under cygwin on win2k for academic access purposes.
Never dealt with it for general (i.e. varied trust level) sftp
access. Don't know enough to comment on whether it meets your
requirement
not to have some vulnerabilities related with FTP
commands such as FTP PORT / SITE / NLIST
> Hello list,
>
> I am looking for a secure FTP server which has less
> vulnerabilities compared to IIS. Besides
> functionality, it is important to be tightly secure &
> not to have some vulnerabilities related with FTP
> commands such as FTP PORT / SITE / NLIST.
>
> Any recommedations & comment
Give a look at Proftp (http://www.proftpd.org)
it's a real nice ftp daemon IMHO, secure and
flexible.
Regards,
P. Abrantes
On Wed, 13 Nov 2002 01:54:41 -0800 (PST)
IDS Guy <[EMAIL PROTECTED]> wrote:
> Hello list,
>
> I am looking for a secure FTP server which has less
> vulnerabilities compar
WS_FTP server from Ipswitch?
SSL for both passwords and data.
Ability to _disable_ a lot of features that make the ftp protocol insecure.
Ability to force 128 bit SSL on connections.
Want to test it. They have a free 30 day eval on their site.
www.ipswitch.ca
Shaun
-Original Message-
F
Has anyone checked this IM at www.awmm.com for spyware etc? Just wondering
if there has been any reports of security issues before I install it on my
system.
Thanks in advance!
John
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
| http://www.sexy-match.com|
|"The Internets
colas.
> -Message d'origine-
> De : s.eVershAde [mailto:[EMAIL PROTECTED]]
> Envoyé : samedi 4 mai 2002 3:19
> À : Chris Chandler; 'Vega, Cesar'; 'Stephane Auger';
> [EMAIL PROTECTED]
> Objet : Re: Secure FTP Server
>
>
> If you're talking abo
sage-
From: Josh Glover [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 03, 2002 4:48 PM
To: [EMAIL PROTECTED]
Subject: Re: Secure FTP Server
Stephane Auger wrote:
> Hello everyone,
>
> I don't know if this is the right place to post this, but here it
is:
> I'm using Wind
7;" <[EMAIL PROTECTED]>; "'Stephane Auger'"
<[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Friday, May 03, 2002 2:54 PM
Subject: RE: Secure FTP Server
> Have you considered Bullet Proof/G6 server or Serv-U FTP? I have used
> both and I like Serv-U better
t; <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Friday, May 03, 2002 9:19 PM
Subject: Re: Secure FTP Server
> If you're talking about the FTP Serv-U from deerfield.com software, I'm
not
> even sure if they manufacture that product anymore. Is anyone able to
> v
Have you considered Bullet Proof/G6 server or Serv-U FTP? I have used
both and I like Serv-U better and it supports SSL as well and is very
configurable and version 4 has been very stable.
If you don't mind the learning curve, Raiden is awesome.
Chris Chandler
MCSE 2000, A+, Net+, Security Consul
Stephane Auger wrote:
> Hello everyone,
>
> I don't know if this is the right place to post this, but here it is:
> I'm using Windows 2000 SP2 + all updates at home and I'm
> looking for a secure FTP server. It has to run under Win2k
> because other people use the box and it has to be on
Check out http://www.networksimplicity.com/openssh/
opensh on windows (with sftp functionality) based on cygwin.
-scm
On Wed, 1 May 2002, Stephane Auger wrote:
> Hello everyone,
>
> I don't know if this is the right place to post this, but here it is:
> I'm using Windows 2000 SP2 + all up
Hi Stephane,
You can use Vandyke's Vshell SSH/SCP Server in your Win2k box, and your FTP
clients could access that box using Vandyke's SecureFX (www.vandyke.com).
You can then configure public key based user authentication, whis is little
better than passwords.
Best Regards,
CVC
# -Origin
How much are you wanting to spend? At any rate, I would give WarFTPd Daemon
a whirl -- it's the one I use, and I personally haven't had any security
problems with it. It's kind of hard to find, as last I checked (I think
we're around version 1.7 on it now) it was downloadable only from a slow
pi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Serv-u ftp server at www.serv-u.com
Sincerely,
David Ellis
Systems/Security Engineer
MCSE, CCSE, CCNA, CCA
Tecnomatix - Unicam Inc.
Two International Drive - Suite 150
http://www.unicam.com
603.766.9664 Tel (Direct)
603.205.4416 Mobile
603.431.
If you want free, you probably want SFTP, it comes with SSH. Goto
http://openssh.org for more info. I'm not sure on the Win2K port though, so
definitley go there and read more on it. I belive Cygwin is a requirement.
You say it has to be Win2K because "other people use the box and it has to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi there,
Something which I found very useful for sharing files between people
without the need for them to have shell access to the machine was the
use of proftpd with a mysql or postgresql backend. I chose to use
mysql because I know it better, b
sftp comes with ssh2. Use the dummy shell to lock out users or just set
their shell to /bin/false. Also check out chrootgroups, since sftp doesn't
chroot by default.
I'd give you a link, but every time I post it, the moderator rejects my
message.
> Please help me pointing me to a right
If you want to transfer files securely between a linux box and a
*nix/Windows box you can you ssh/scp. This is not a direct replacement for
FTP. I am not aware of a anonymous ssh/scp server. Anyways, the windows
client can be found here.
http://www.chiark.greenend.org.uk/~sgtatham/putty/downloa
Well... probably you'll want to install SAMBA (www.samba.org)
Samba shares files in the Windows style and is pretty reliable.
Anyway I don't understand wall what have you done. Are you protecting yourself from
the rest of the LAN? Securing the LAN will be a better practice.
Absolutely yours
Ivan
Well your ASCII diagram doesn't exactly show what you word in your email...
but... your solution might be as simple as this:
++
++ Internet ++
++
||
+
+Linux + ..
A web server probably wouldn't work too bad, depends on what kinds of files you want
to share, etc. If you want to share larger files, I suggest that you don't go with
http because it's not very good with resuming (incase the person gets diconnected or
watever else.) As for ftp servers, dependi
25 matches
Mail list logo