More secure against what threat? Some external user guessing a username/password? Probably the second option.
But given that Windows Server 2000 is now out of extended support, I don't really have that much confidence in either option. But another option would be to put the FTP server into the DMZ, and create two FTP sites. One is read-only, and can be accessed by anyone. The second is read/write, but you use IP restrictions to ensure that only users on your internal network are able to connect to it Cheers Ken ________________________________________ From: roger rabus [EMAIL PROTECTED] Sent: Friday, 4 January 2008 11:58 AM To: NT System Admin Issues Subject: which is more secure? hi everyone, Please help me determine which is more secure? 1. a Windows 2000 server set up for read/write Ftp that is in the DMZ with only access thru a firewall both to the inside network and the internet. Some users will have read/write while most will have read only as defined by windows file security access. 2. a Windows2000 server setup for read only Ftp access thru the firewall. internal users will place files on the server via a file sharing via a separate network interface to the server. External users will only have read only ftp access to files. Roger Rabus Logical Solutions ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
