On Tue, 25 Sep 2001 at 17:48, Fritz Mesedilla wrote:
> i know you all adviced me to turn off ftp.
The only issue of FTP I think is that in most cases data is sent over the
network in cleartext, and this includes your login and password. Other
than that I think it's pretty okay.
> here is what we hope to achieve:
> open ftp
> only one internal ip address is allowed ftp
> ftp is NOT seen outside the network
> firewall is installed.
So you're using FTP only internally? Why, I don't see a problem with that
if you can be "sure" of the security internally (ie: no sniffers). AFAIK
ProFTPd uses tcpwrappers and is thus affected by the
/etc/hosts.{allow,deny} files, where you can specify that everyone except
a particular IP address cannot connect to the FTP daemon. :)
Alternatively of course you can use ipchains/iptables, but for this you
probably want to wait for the ACENT guys (and gal) to speak up. :)
--> Jijo
--
Federico Sevilla III :: [EMAIL PROTECTED]
Network Administrator :: The Leather Collection, Inc.
GnuPG Key: <http://jijo.leathercollection.ph/jijo.gpg>
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
