From owner-freebsd-questions@FreeBSD.ORG Thu May 4 17:44:50 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D07B716A400 for ; Thu, 4 May 2006 17:44:50 +0000 (UTC) (envelope-from njt@ayvali.org) Received: from starfish.geekisp.com (starfish.geekisp.com [216.168.135.166]) by mx1.FreeBSD.org (Postfix) with ESMTP id 009ED43D45 for ; Thu, 4 May 2006 17:44:49 +0000 (GMT) (envelope-from njt@ayvali.org) Received: (qmail 14584 invoked by uid 1003); 4 May 2006 17:44:49 -0000 Received: from clam.int.geekisp.com (HELO clam.geekisp.com) (192.168.4.38) by mail.geekisp.com with (DHE-RSA-AES256-SHA encrypted) SMTP; 4 May 2006 17:44:49 -0000 Received: from clam.geekisp.com (njt@localhost.geekisp.com [127.0.0.1]) by clam.geekisp.com (8.13.3/8.12.11) with ESMTP id k44HimOf004936; Thu, 4 May 2006 13:44:48 -0400 (EDT) Received: (from njt@localhost) by clam.geekisp.com (8.13.3/8.13.3/Submit) id k44Himdl025556; Thu, 4 May 2006 13:44:48 -0400 (EDT) X-Authentication-Warning: clam.geekisp.com: njt set sender to njt@ayvali.org using -f Date: Thu, 4 May 2006 13:44:47 -0400 From: "N.J. Thomas" To: Noah Message-ID: <20060504174447.GC2095@ayvali.org> References: <20060504134723.M54964@enabled.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20060504134723.M54964@enabled.com> User-Agent: Mutt/1.5.9i Cc: freebsd-questions Subject: Re: FTPd recommendation? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 May 2006 17:44:50 -0000 * Noah [2006-05-04 05:48:40 -0800]: > What are people using for their ftpd these days? I am looking for > something easy to initiailize, configure, and is very secure. Another vote for vsftpd: http://vsftpd.beasts.org/ Trivial to setup/configure, very secure. In addition to all of the normal security features that vsftpd offers, we turn on the pasv_min_port/pasv_max_port options to restrict the download ports, it's a nice feature. (I attended an Apache/FTP security lecture in the Bay Area a couple of years ago (2002/2003) at one of the local user groups there -- the speaker was "testing" out his talk on us before he gave it at some Usenix/SAGE conference. The ftp portion was a howto on securing wu-ftpd, but before he started, he said point blank that if you didn't need anonymous uploads, to just use vsftpd.) Thomas -- N.J. Thomas njt@ayvali.org Etiamsi occiderit me, in ipso sperabo