On Friday 09 February 2001 02:11, Stefan Jordan wrote:
> > --- Michal Rokos <[EMAIL PROTECTED]> wrote:
> > > Hello,
> > > I sent a few (2) mails to cooker maillist and today some guys
> >
> > from
> >
> > > France uploaded 500MB XXX and Warez data into hidden folders on my
> > > computer.
> >
> > Those crackers could have been from Rochester or Peru or just about
> > anywhere and just using someone's cracked system to get yours.
> >
> > > I find it out when I came back from school. They also tried some
> > > "unclean" packets to my computer.
> > >
> > > So: Please, read the logs and use the firewall!!!
>
> You'd better ban anonymous access to your ftp server, don't you ?
> Or even better, something everyone should do : no write access anywhere via
> ftp...
If you're running wu-ftpd, have a VERY good look at the FAQs - there are some
good suggestions there.
- turn off anonymous FTP. You don't need, don't want it, and are setting
yourself up for attack
- read the Guest HOWTO.
- ALL users should be guest users - no real users at all. This limits their
view of the file system
If you can, set up your network filters to only allow ftp connections from
specific network segments.
If you've only got a few users, consider using sftp or scp instead of ftp and
then turn your ftp service off.
There's always been the VERY good Linux Administrator's Security Guide. Read
it, follow it, and sleep soundly at night.
--
Ed Wilts, Mounds View, MN, USA
mailto:[EMAIL PROTECTED]
