From owner-freebsd-questions@FreeBSD.ORG Thu May 4 14:18:44 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A291A16A415 for ; Thu, 4 May 2006 14:18:44 +0000 (UTC) (envelope-from nalists@scls.lib.wi.us) Received: from mail.scls.lib.wi.us (mail.scls.lib.wi.us [198.150.40.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 316E643D53 for ; Thu, 4 May 2006 14:18:42 +0000 (GMT) (envelope-from nalists@scls.lib.wi.us) Received: from [172.26.2.238] ([172.26.2.238]) by mail.scls.lib.wi.us (8.13.1/8.13.1) with ESMTP id k44EIc80073770; Thu, 4 May 2006 09:18:38 -0500 (CDT) (envelope-from nalists@scls.lib.wi.us) Message-ID: <445A0D3C.4010800@scls.lib.wi.us> Date: Thu, 04 May 2006 09:18:36 -0500 From: Greg Barniskis User-Agent: Thunderbird 1.5 (Windows/20051201) MIME-Version: 1.0 References: <200605041400.k44E0c7Y021532@clunix.cl.msu.edu> In-Reply-To: <200605041400.k44E0c7Y021532@clunix.cl.msu.edu> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Noah , freebsd-questions Subject: Re: FTPd recommendation? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 May 2006 14:18:47 -0000 Jerry McAllister wrote: > Using what comes with the base system. > Having no problem. Same here. If functionality is in the base, my philosophy is that replacing it violates the KISS principle unless the replacement offers some additional functionality that justifies the change. Security problems detected in the base are usually fixed very, very quickly. If truly worried about the security of any ftpd (base or not), jail it and (if you can) firewall the access to limit usage to specific clients. Probably better, use SCP or SFTP instead of plain old FTP. Of course, you can't block or secure logins if you're aiming at anonymous access from the big bad Internet, but jailing the service might be sufficient then. You might get better answers if you posted details about intended use and any atypical functionality required/desired. There are nifty ftpd replacements available that serve particularly well for some environments. -- Greg Barniskis, Computer Systems Integrator South Central Library System (SCLS) Library Interchange Network (LINK) , (608) 266-6348