Re: How to secure ftp over SSH (how to make ftpd listen only to 127.0.0.1)?

2004-05-22 Thread Pavel Duda
Constantine wrote:
Hello,
I am very concerned about the security of my servers. My favourite 
file-management software does not support any other unix standards than 
plain ftp.

How is it possible to set up my FreeBSD 5.2.1 that way, that it will 
accept ftp connections only from itself, so that iff the login to the 
system is done via SSH with port-forwarding, then one can open 
ftp-connection?

(It will be very nice if in this case the username/password is not 
requested again, i.e. the ftp connection is anonymous and yet the 
ftp-client gets the same rights to files as SSH-logged user, who has the 
port-forwarding, but this does not sound like easy doable.)

Put it in other words, how can I make ftpd listen only to 127.0.0.1?
Constantine.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to 
[EMAIL PROTECTED]

I've forgot about hosts.allow it should work as well if you dont want to 
use ipfw.

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


Re: How to secure ftp over SSH (how to make ftpd listen only to 127.0.0.1)?

2004-05-21 Thread Pavel Duda
Constantine wrote:
Hello,
I am very concerned about the security of my servers. My favourite 
file-management software does not support any other unix standards than 
plain ftp.

How is it possible to set up my FreeBSD 5.2.1 that way, that it will 
accept ftp connections only from itself, so that iff the login to the 
system is done via SSH with port-forwarding, then one can open 
ftp-connection?

(It will be very nice if in this case the username/password is not 
requested again, i.e. the ftp connection is anonymous and yet the 
ftp-client gets the same rights to files as SSH-logged user, who has the 
port-forwarding, but this does not sound like easy doable.)

Put it in other words, how can I make ftpd listen only to 127.0.0.1?
Constantine.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to 
[EMAIL PROTECTED]

I'm not sure if this is possible to set within ftpd. I'm using classic 
way to block incoming FTP requests from unwanted addresses - IPFW.

___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]


How to secure ftp over SSH (how to make ftpd listen only to 127.0.0.1)?

2004-05-20 Thread Constantine
Hello,
I am very concerned about the security of my servers. My favourite 
file-management software does not support any other unix standards than 
plain ftp.

How is it possible to set up my FreeBSD 5.2.1 that way, that it will 
accept ftp connections only from itself, so that iff the login to the 
system is done via SSH with port-forwarding, then one can open 
ftp-connection?

(It will be very nice if in this case the username/password is not 
requested again, i.e. the ftp connection is anonymous and yet the 
ftp-client gets the same rights to files as SSH-logged user, who has the 
port-forwarding, but this does not sound like easy doable.)

Put it in other words, how can I make ftpd listen only to 127.0.0.1?
Constantine.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]