Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How to build a secure ftp server

Status
Not open for further replies.
rsp11

rsp11

IS-IT--Management
Nov 28, 2002
25
0
0
GB
I'm newish to the world of UNIX and I've been asked to build a "secure" ftp server so staff can access it from inside and outside the network. The networking side isn't much of a porblem but can someone direct me a resources where I can get this box up and running with Solaris and an ftp daemon.

Solaris (x.x "not sure which") should already be on the box so I'll need to know how to secure it and how to get ftp up and running.

Any help will be welcomed [2thumbsup]...........cheers!
 
Sort by date Sort by votes

Solaris is shipped as standard with the ftpd (or FTP daemon) and is enabled usually with an entry in the /etc/services file.

You should start *at least* by looking at the manual pages for ftp, in.ftpd, ftpd and similar.

Essentially, from inside the network, users should be able to ftp to the server immediately, as long as it is known to the local network directory service.

From outside the network, you will need to configure your routers and firewall such that ftp requests to a given IP port or hostname are directed to this server.

For any user that wants to have access to the server, you will need a user account and home directory on the server.

This answer is the quick and dirty essentials, because you should really spend some time looking at books and internet references on the subject. FTP security is a contentious issue and there are strong divisions on how you should provide secure access to remote network resources. Having said that, the setup and configuration is surprisingly easy. It's keeping out unwanted guests that is the hard part.

Christian
 
Upvote 0 Downvote
You may want to check out Washington University FTP (WU-FTP). You can lock down users to specific directories by way of a file called &quot;ftpaccess&quot;. It's free at Select your OS-type, scroll then click the wuftpd-2.6.2 link. It'll install to /usr/local. You'll need &quot;gzip&quot; to uncompress the file. Run &quot;pgadd -d <package>&quot;. The packages on this site are normally named <something-something-local.gz>.

If you're more of a hacker, or prefer to install to a different directory, you might want the source code which is normally named <something-something-tar.gz>. You'll need to uncompress, then untar the file. You'll also need a compiler (gcc or Forte, for example).

I'm sorry, but I can't offer more assistance regarding the ftpaccess file--I'm trying to figure it out myself! If you happen to find a site, paper, editorial, etc., that gives a good explanation of the file, please let me know.

Good luck!
 
Upvote 0 Downvote
Another good ftp daemon is proftp. Pretty much the same thing as WUFTP.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ziggy6
  • Question
Help using awk or some kind of Tool in Unix to Read a file, cut fields and write to a file
Replies
2
Views
172
mikrom
mikrom
ziggy6
  • Locked
  • Question
Trying to Install Openssl 1.1.1. on SCO 5.0.7
Replies
0
Views
140
ziggy6
ziggy6
mduddytel
  • Locked
  • Question
Unix Root inbox - how to clear
Replies
0
Views
135
mduddytel
mduddytel
Otimo
  • Locked
  • Question
Print Server on Openserver 5.0.6
Replies
0
Views
122
Otimo
Otimo
orbur
  • Locked
  • Question
Puzzeling Unbound dns server behaviour
Replies
0
Views
108
orbur
orbur

Part and Inventory Search

Sponsor

Back
Top