Re: [MacGroup] FTP using Windows with Mac Server

Sat, 12 Jan 2008 18:01:12 -0800 

On Jan 12, 2008, at 7:56 PM, Dan Crutcher wrote:


 I don't understand why when I'm using a Mac FTP program the
server prompts me to enter a password (which is what I want it to do),
but using Windows Explorer I have to select (and know enough to
select) this rather hidden "Login As ..." feature. It makes me think
that I have some setting wrong in OS X Server -- probably some setting
that handles how the server deals with Windows users.



I don't know if there's a magic setting. Microsoft gives you the  
option of writing the URL as ftp://username:[EMAIL PROTECTED]  
I cringe when thinking about using this with ftp because the security  
implications are pretty grim.



Re FTP vs. SFTP: In OS X Server Admin I have turned on the FTP
service. I can find no option in there to use SFTP or SCP. The only
place I find an SFTP option is in the Firewall service, which is not
currently turned on in OS X Server (the server sits behind a router
that I think [and hope] acts as a firewall). To use this SFTP option,
would I need to turn on the Firewall service and then activate SFTP?



If SSH is turned on, then SFTP and SCP are probably available. The  
port for all three is 22.



And if I did that, should I then turn off the FTP service? As you can
probably guess by these questions, I know little about firewalls and
security. If you know of any good tutorial you can point me to, I'd
appreciate it.




The only place I run ftp is the anonymous service on this machine,  
erdos. It does not allow any real user to long into her account and it  
runs heavily sandboxed so there is no connection to anything "real" on  
the machine. All real user connections are completely encrypted. On  
the machines in my office and at home, the only external file  
transfers are via sftp or scp.


People are trying to get in. Here's part of yesterday's log from erdos:

ftpd:
   Connections:
      anonymous: 213 successful from 84 addresses
   Authentication Failures:
      Unknown users: 10740 attempts from 5041 addresses
      Illegal users: 4812 attempts from 4577 addresses
      Abandoned: 116 from 98 addresses

Only about 10,000 tries yesterday... usually it's more.







Attachment:
smime.p7s

Description: S/MIME cryptographic signature


_______________________________________________
The next Louisville Computer Society meeting will
be January 22 at MacAuthority, 128 Breckinridge Lane. 
Posting address: [email protected]
Information: http://www.math.louisville.edu/mailman/listinfo/macgroup






















					Reply via email to