Re: upload-only ftp server
On 5/25/06, Mikhail Goriachev [EMAIL PROTECTED] wrote: Yeah, I agree. I forced my users to use SFTP through FileZilla on windows. They actually think they're using FTP instead of SFTP. So everyone is happy including me. Isn't it a problem that they can't be chrooted? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upload-only ftp server
Lars Stokholm wrote: On 5/25/06, Mikhail Goriachev [EMAIL PROTECTED] wrote: Yeah, I agree. I forced my users to use SFTP through FileZilla on windows. They actually think they're using FTP instead of SFTP. So everyone is happy including me. Isn't it a problem that they can't be chrooted? You could look at rssh which can restrict logins to just sftp and I believe allows chrooting. Of course, with such a shell you can't then log in to Unix normally. Proftpd will let you configure just about everything and can limit cd, for example, and might do what's required. Configuration is pretty mind-boggling, though, and always leaves me with the nagging doubt that I didn't get everything right, so testing always takes longer too :-( I'm not sure I'd recommend it unless it did really did have a feature that was required. --Alex ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upload-only ftp server
On 5/25/06, Lars Stokholm [EMAIL PROTECTED] wrote: On 5/25/06, Mikhail Goriachev [EMAIL PROTECTED] wrote: Yeah, I agree. I forced my users to use SFTP through FileZilla on windows. They actually think they're using FTP instead of SFTP. So everyone is happy including me. Isn't it a problem that they can't be chrooted? The scp only shell allows you to chroot your sftp users. -- -- Perfection is just a word I use occasionally with mustard. --Atom Powers-- ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upload-only ftp server
Lars Stokholm wrote: On 5/25/06, Mikhail Goriachev [EMAIL PROTECTED] wrote: Yeah, I agree. I forced my users to use SFTP through FileZilla on windows. They actually think they're using FTP instead of SFTP. So everyone is happy including me. Isn't it a problem that they can't be chrooted? Well it depends. In my case: 1.- I'm not hiding anything on the system. 2.- Users' home dirs are chmoded to 700. Cheers, Mikhail. -- Mikhail Goriachev Webanoide Telephone: +61 (0)3 62252501 Mobile Phone: +61 (0)4 38255158 E-Mail: [EMAIL PROTECTED] Web: http://www.webanoide.org PGP Key ID: 0x4E148A3B PGP Key Fingerprint: D96B 7C14 79A5 8824 B99D 9562 F50E 2F5D 4E14 8A3B ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
upload-only ftp server
Dear List, I would like to install an ftp server. Some of the users want to upload files to the server. I would not like to start an ftp server at all, because I'm too paranoid. But my users demand it. I looked at the ports tree and I found many ftp servers. I cannot choose between them. Can you recommend one for me? I only need one ftp user (possibly with a password), and upload/list files only. The most important thing is security, and the ability to handle passive transfers. Thanks, Laci ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upload-only ftp server
User Gandalf wrote: Dear List, I would like to install an ftp server. Some of the users want to upload files to the server. I would not like to start an ftp server at all, because I'm too paranoid. But my users demand it. I looked at the ports tree and I found many ftp servers. I cannot choose between them. Can you recommend one for me? I only need one ftp user (possibly with a password), and upload/list files only. The most important thing is security, and the ability to handle passive transfers. vsftpd does all that and more. its easy to set up too ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upload-only ftp server
* User Gandalf [EMAIL PROTECTED] [2006-05-24 16:32:55 +0200]: I looked at the ports tree and I found many ftp servers. I cannot choose between them. Can you recommend one for me? Second the recommendation for vsftpd. Thomas -- N.J. Thomas [EMAIL PROTECTED] Etiamsi occiderit me, in ipso sperabo ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upload-only ftp server
I use vsftpd -Derek At 09:32 AM 5/24/2006, User Gandalf wrote: Dear List, I would like to install an ftp server. Some of the users want to upload files to the server. I would not like to start an ftp server at all, because I'm too paranoid. But my users demand it. I looked at the ports tree and I found many ftp servers. I cannot choose between them. Can you recommend one for me? I only need one ftp user (possibly with a password), and upload/list files only. The most important thing is security, and the ability to handle passive transfers. Thanks, Laci ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: upload-only ftp server
--On May 24, 2006 4:32:55 PM +0200 User Gandalf [EMAIL PROTECTED] wrote: Dear List, I would like to install an ftp server. Some of the users want to upload files to the server. I would not like to start an ftp server at all, because I'm too paranoid. But my users demand it. I looked at the ports tree and I found many ftp servers. I cannot choose between them. Can you recommend one for me? I only need one ftp user (possibly with a password), and upload/list files only. The most important thing is security, and the ability to handle passive transfers. Is there a reason they can't use sftp? You're most likely already running sshd, which means you already have sftp capabilities builtin. If the issue is usability, there are a number of gui clients available for all platforms (WinSCP for Windows, for example) that make the process painless. Paul Schmehl ([EMAIL PROTECTED]) Adjunct Information Security Officer The University of Texas at Dallas http://www.utdallas.edu/ir/security/
Re: upload-only ftp server
Paul Schmehl wrote: --On May 24, 2006 4:32:55 PM +0200 User Gandalf [EMAIL PROTECTED] wrote: Dear List, I would like to install an ftp server. Some of the users want to upload files to the server. I would not like to start an ftp server at all, because I'm too paranoid. But my users demand it. I looked at the ports tree and I found many ftp servers. I cannot choose between them. Can you recommend one for me? I only need one ftp user (possibly with a password), and upload/list files only. The most important thing is security, and the ability to handle passive transfers. Is there a reason they can't use sftp? You're most likely already running sshd, which means you already have sftp capabilities builtin. If the issue is usability, there are a number of gui clients available for all platforms (WinSCP for Windows, for example) that make the process painless. Yeah, I agree. I forced my users to use SFTP through FileZilla on windows. They actually think they're using FTP instead of SFTP. So everyone is happy including me. Cheers, Mikhail. -- Mikhail Goriachev Webanoide Telephone: +61 (0)3 62252501 Mobile Phone: +61 (0)4 38255158 E-Mail: [EMAIL PROTECTED] Web: http://www.webanoide.org PGP Key ID: 0x4E148A3B PGP Key Fingerprint: D96B 7C14 79A5 8824 B99D 9562 F50E 2F5D 4E14 8A3B ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
