[TriLUG] minimal ftp host
Jon Carnes
jonc at nc.rr.com
Fri Jun 27 15:36:20 EDT 2003
The real key here is to limit anonymous uploads to a small partition
(well make it large enough to suit your needs...). The partition should
be a stand-alone one.
I'm sure you know that you *cannot* allow anonymous access to any of the
anonymous uploaded files. VSftp has a nice feature where it changes the
rights/ownership of any uploaded anonymous file. Use that!
Since my anonymous users don't need to create directories I forbid them
from doing it.
I also like to run a security script every 10-20 minutes that checks on
the rights structure of my FTP directories, and enforces those rights.
Good Luck - Jon Carnes
On Fri, 2003-06-27 at 15:13, Ryan Leathers wrote:
> Recently I have been playing with vsftpd
> I like this ftp server a lot.
>
> I have a need to field an anonymous ftp server.
> I'd like to use vsftpd and remove basically everything else.
>
> I've used Devil Linux and Trinux as dedicated firewall / proxy so my
> first thought is to go this route and add vsftpd. Before I do I thought
> I'd get the input of the list readers for good ideas or successes you've
> had building... dare I say... "secure anonymous ftp servers"
>
More information about the TriLUG
mailing list