From owner-freebsd-isp Wed Feb 21 1:41:39 2001 Delivered-To: freebsd-isp@freebsd.org Received: from hitline.ch (mail.hitline.ch [195.129.74.66]) by hub.freebsd.org (Postfix) with ESMTP id ADDAB37B4EC for ; Wed, 21 Feb 2001 01:41:34 -0800 (PST) (envelope-from micheal@com4u.ch) Received: from [62.2.147.87] (account micheal@com4u.ch HELO [62.2.147.87]) by hitline.ch (CommuniGate Pro SMTP 3.4) with ESMTP id 3610261 for freebsd-isp@FreeBSD.ORG; Wed, 21 Feb 2001 10:41:28 +0100 Mime-Version: 1.0 X-Sender: micheal%com4u.ch@mail.com4u.ch Message-Id: In-Reply-To: References: Date: Wed, 21 Feb 2001 10:40:42 +0100 To: freebsd-isp@FreeBSD.ORG From: Michael O Shea Subject: Re: Secure FTP server, as secure as possible ? Content-Type: text/plain; charset="iso-8859-1" ; format="flowed" Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org >Hi guys, howzit going ? > >A client wants us to configure a FreeBSD server as an FTP server only. >The clients that will connect will have static IP addresses. >I can use tcp wrappers, and ipfw to do firewalling and closing of all acces= s >except to tcp port 21 from static IP clients. >What other security options can I look at to make this an extremely secure >FTP server ? >Thanks. > > >Kindest regards >David Wilson >The S.A Internet >You are contradicting yourself. FTP is by nature not secure. Use scftp instead. -- Micheal O Shea ----------------------------------------------------- com-o-tronic ag Micheal O Shea, Systems Engineer Gewerbepark CH-5506 M=E4genwil E-Mail micheal@com4u.ch Voice: +41 62 887 3734 =46ax: +41 62 896 1133 Internet: http://www.com4u.ch http://www.ehitline.ch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message