On August 25, 2003 09:56 pm, Mark Knecht wrote: > I work with some friends using Windows based environments doing > music. We need to do studio to studio data file transfers. In a prior > life I had an IT guy that managed an off-site ftp server and he was nice > enough to give me a couple of accounts, but now I need to do this > myself, and the only machine I have to do it on is my main studio Gentoo > box. > > I am somewhat concerned about potential security issues using ftp, > but since everyone is on Windows I also don't want to require them to > use special tools just to be able to send me things. Are there any good > options other than ftp that will work with both Linux and Windows? > > I am also concerned that my home studio firewall cannot limit ftp > access by incoming IP, and will forward all ftp requests to this > machine, so I need a solution that is pretty bullet proof, but hopefully > is also easy enough for me to setup and run. (I be a IT guy not...) > > Can someone point me toward a few potential solutions that would be > secure and also easy for a beginner type to setup and maintain?
for file transfers within the studio, samba will do nicely, but if you're even remotely security concious, samba isn't viable over the internet. for that i can see only 2 options: (a) ftp, or (b) ssh/sftp ftp is easy for everyone and internet exploder even supports it natively (albeit badly). it is however insecure since everything is unencrypted. ssh/sftp is my preferred solution since it only requires a free copy of ssh for windows downloadable @ ssh.com. it includes a simple shell utility as well as a drag n' drop client for file transfers much like ftp. as for the ip filtering question, that's easy: install iptables and filter all traffic on port 22 (for ssh, 20/21 for ftp) based on the requesting ip. even if your external firewall lets bad requests through, your server's firewall will drop the traffic you don't want. my advice then for is samba locally, ssh externally using iptables on your server to regulate traffic. -- ...he who in dealing with the empire loves his subjects as one should love one's body is the best person to whom one can commit the empire. - lau tzu, "tao te ching: chapter xiii" -- [EMAIL PROTECTED] mailing list
