Stephen Gran sent the following message Today: SG> Hello all, SG> SG> I'd like the FTP server to not allow anonymous logins (which I assume SG> most can do), chroot users to their home directories, and have some sort SG> of encrypted connections (over SSL would be nice). I have thought about SG> just using sftp, but currently ssh connections are rerouted to another SG> box on the LAN, and I'd like to leave that set up as is, if possible. SG> SG> I see that proftpd is the example used in the 'securing Debian' manual, SG> but it doesn't appear to be able to use SSL. OTOH, ftpd-ssl doesn't SG> appear to do chroot'ing, at least not at a quick glance. Anybody know SG> of one that combines these features? I suppose there is always stunnel, SG> although I have never tried to use it for FTP.
Install SSH and give your friends shell accounts. SFTP is a drop-in replacement for FTP. Generally, I never use FTP except to make anonymous downloads available. There have been too many problems with many FTP servers in the past. Adding SSL to a standard FTP session also presents the problem that many standard FTP clients (at least on Windows) do not support this configuration. -- Chris Caldwell Information Systems Coordinator, Enterprise Systems Information Systems and Services, The George Washington University caldwell @ gwu . edu | +1 202.994.4674 (w) | +1 202.409.0878 (c) http://asclepius.tops.gwu.edu | GPG key ID: 0xE52D0BE8 "Formal education can rarely improve the character of a scoundrel." - Derek Bok, Harvard University
