At 03:46 PM 1/21/2002 -0500, daRcmaTTeR wrote: > > >Thomas Sourmail wrote: >> >> > I have two friends that want to use my box as a library, and communicate >via >> > ftp. We are looking for a way to minimize the crypto needed, as they intend >> > to load up and share movies and their mp3's in this ftp-server. >> >> Hum.. not sure what you want to do.. Do you want to encrypt the files, or >> simply protect the passwords when using ftp ? >> >> Anyway, I think an ssh tunel could do the trick: if you forward any >> unpriviledged port to port 21 of the server, you will encrypt username and >> password, but because the data go to port 20, they won't be encrypted. >> >> On the client side you would do >> ssh -L 1234:ftp-server-name:21 localhost >> (not need to be localhost though) >> >> and again on the client, use any ftp client and connect to localhost >> on port 1234. >> >> Only problem, you need an ftp server which allows passive mode, I think >> wu-ftpd (default on lots of linux boxes) does not. >> >> Anyone knows whether sftp encrypts the data or not ? > >about the only thing I would add to this is the most secure setup of an >FTP server I've see is the way Proftpd sets up. You can dictate just >"where" and "who" is logging onto your FTP server by setting this all up >in the directives.
Make sure you set up the config file or else anyone can go anywhere on your machine.
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
