[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] ftp security

Subject: Re: [cobalt-users] ftp security
From: Jim Dory <jdory@xxxxxxxxxxxxxx>
Date: Mon Sep 8 09:44:05 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>


Ligard, Vidar wrote:


I would use your hardware firewall to block out all traffic to the ftp server from anybody, except the ip of the machine you use to upload the web content. If that machine is sitting on the private port of the firewall, outside hackers will not be able to sniff on the password which does get sent in open text like telnet. They will not be able to spoof your ip to get in either, as the firewall will detect that ip to not belong to the exterior port, and drop the packet. If your workstation is on the exterior, however, you might want to consider using some sort of secure ftp, as others would potentially be able to see your password.

Vidar


Thanks Vidar,

This sounds like the easiest way to get solid security. The hosts.denysolution suggested by Dave sounds like the first thing I should doanyway. I may have to go with the SSL version of proftp though becausewe occasionally have a web designer do some work from outside. She couldalways just email me the pages I suppose, but would be nice to give herftp access to help with directory cleanup, etc. I've pretty much had hercut off from ftp since I started learning more about security.


--
Jim D.

References:
- RE: [cobalt-users] ftp security
  - From: Ligard, Vidar

Prev by Date: Re: [cobalt-users] ftp security
Next by Date: [cobalt-users] Some Problem on Raq 4
Previous by thread: RE: [cobalt-users] ftp security
Next by thread: [cobalt-users] new Patch for RAQ4 at SunSolve

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index