Re: FW: Try security update from the Microsoft

A Windows-worm in the debian-security list? Great :D BM> - Original message follows - BM> Microsoft Consumer BM> this is the latest version of security update, the BM> "June 2003, Cumulative Patch" update which eliminates all BM> known security vulnerabilities affecting Internet Explore

recommendations for FTP server

Hello all, I am thinking about setting up an FTP server to be used by myself and a couple of friends. The box it will be running on is basically stock Woody, and is currently only running apache and NAT'ing for a LAN. I'd like the FTP server to not allow anonymous logins (which I assume most can

Re: recommendations for FTP server

On Fri, Jun 20, 2003 at 12:56:01PM -0400, Stephen Gran wrote: > I am thinking about setting up an FTP server to be used by myself and a > couple of friends. The box it will be running on is basically stock > Woody, and is currently only running apache and NAT'ing for a LAN. > > I'd like the FTP

Re: recommendations for FTP server

Stephen Gran <[EMAIL PROTECTED]> writes: > I see that proftpd is the example used in the 'securing Debian' manual, > but it doesn't appear to be able to use SSL. OTOH, ftpd-ssl doesn't > appear to do chroot'ing, at least not at a quick glance. Anybody know > of one that combines these features?

Re: recommendations for FTP server

> Any recommendations, experiences, thoughts? Running ftp over a vpn would work but its not the easiest option. Sftp is exactly what you need. Why not just run it on another port? Hope this helps.

Re: recommendations for FTP server

Stephen Gran sent the following message Today: SG> Hello all, SG> SG> I'd like the FTP server to not allow anonymous logins (which I assume SG> most can do), chroot users to their home directories, and have some sort SG> of encrypted connections (over SSL would be nice). I have thought about

Re: recommendations for FTP server (fwd)

From:[EMAIL PROTECTED] To: Stephen Gran <[EMAIL PROTECTED]> Subject: Re: recommendations for FTP server Date:Fri, 20 Jun 2003 18:37:43 + If security is a concern, you might want to use SecureFTP instead. It is part of the OpenSSH package. The sftp client is a part of most Linux a

RE: recommendations for FTP server

Have you thought about running sftp on a nonstandard port? John Wright Manager of Departmental Computing Radio/TV Services Indiana University 1229 E. Seventh Street, room 284 Radio-TV Center Bloomington, Indiana 47405 Phone: 812-855-8076 Fax: 812-855-0729 [EMAIL PROTECTED] -Original Message

Re: recommendations for FTP server

On Fri, 2003-06-20 at 18:56, Stephen Gran wrote: > Hello all, > > I am thinking about setting up an FTP server to be used by myself and a > couple of friends. The box it will be running on is basically stock > Woody, and is currently only running apache and NAT'ing for a LAN. > > I'd like the FT

Re: recommendations for FTP server

On Fri, Jun 20, 2003 at 02:24:22PM -0400, Matt Zimmerman wrote: > On Fri, Jun 20, 2003 at 12:56:01PM -0400, Stephen Gran wrote: > > > I am thinking about setting up an FTP server to be used by myself and a > > couple of friends. The box it will be running on is basically stock > > Woody, and is c

Re: recommendations for FTP server

This one time, at band camp, Matt Zimmerman said: > On Fri, Jun 20, 2003 at 12:56:01PM -0400, Stephen Gran wrote: > > I'd like the FTP server to not allow anonymous logins (which I assume > > most can do), chroot users to their home directories, and have some sort > > of encrypted connections (over

Re: recommendations for FTP server

* Stephen Gran <[EMAIL PROTECTED]> wrote: > I am thinking about setting up an FTP server to be used by myself and a > couple of friends. The box it will be running on is basically stock > Woody, and is currently only running apache and NAT'ing for a LAN. > > I'd like the FTP server to not allow a

Re: recommendations for FTP server

> Proftpd does support SSL/TLS. It's a module that comes with it, it's > just not enabled by default. Some nice docs here: > http://www.castaglia.org/proftpd/modules/mod_tls.html > http://www.castaglia.org/proftpd/doc/contrib/ProFTPD-mini-HOWTO-TLS.html Actually... it's enabled by default, that'

Re: recommendations for FTP server

On Fri, Jun 20, 2003 at 07:39:28PM +0100, Ian Goodall wrote: > > Any recommendations, experiences, thoughts? > > Running ftp over a vpn would work but its not the easiest option. Sftp is > exactly what you need. Why not just run it on another port? Last I checked, sftp requires a patch to chroot,

Re: recommendations for FTP server

* Stephen Gran ([EMAIL PROTECTED]) [030621 01:05]: > Yeah, that's what I have been thinking. I was sort of hoping there was > something else out there that did all this besides sftp, because several > of my friends will be connecting from Windoze boxes. I guess I'll just > point them to PuTTy and

Re: recommendations for FTP server

> > You could run sshd on another port. Really, if you want encryption and no > > anonymous connections, sftp is the right tool for the job. > > Yeah, that's what I have been thinking. I was sort of hoping there was > something else out there that did all this besides sftp, because several

Re: recommendations for FTP server (fwd)

From:[EMAIL PROTECTED] To: Dariush Pietrzak <[EMAIL PROTECTED]> Subject: Re: recommendations for FTP server Date:Sat, 21 Jun 2003 01:09:45 + I know about SSL/TLS support in Proftp, the only problem is that few clients support it (thanks fot the link to the Woody backport). I woul

Re: recommendations for FTP server

On Fri, 20 Jun 2003 16:25:30 -0400, Stephen Gran wrote: >This one time, at band camp, Matt Zimmerman said: [...] >Yeah, that's what I have been thinking. I was sort of hoping there was >something else out there that did all this besides sftp, because several >of my friends will be connecting from

Re: recommendations for FTP server

Quoting Marcus Frings ([EMAIL PROTECTED]): > Maybe will > help you to make a good decision. Hey, thanks, Marcus! That file reflects (and disclaims) my prejudice that anonymous ftp remains A Good Thing (see: http://linuxmafia.com/~rick/l

Re: FW: Try security update from the Microsoft

A Windows-worm in the debian-security list? Great :D BM> - Original message follows - BM> Microsoft Consumer BM> this is the latest version of security update, the BM> "June 2003, Cumulative Patch" update which eliminates all BM> known security vulnerabilities affecting Internet Explore

recommendations for FTP server

Hello all, I am thinking about setting up an FTP server to be used by myself and a couple of friends. The box it will be running on is basically stock Woody, and is currently only running apache and NAT'ing for a LAN. I'd like the FTP server to not allow anonymous logins (which I assume most can

Re: recommendations for FTP server

On Fri, Jun 20, 2003 at 12:56:01PM -0400, Stephen Gran wrote: > I am thinking about setting up an FTP server to be used by myself and a > couple of friends. The box it will be running on is basically stock > Woody, and is currently only running apache and NAT'ing for a LAN. > > I'd like the FTP

Re: recommendations for FTP server

Stephen Gran <[EMAIL PROTECTED]> writes: > I see that proftpd is the example used in the 'securing Debian' manual, > but it doesn't appear to be able to use SSL. OTOH, ftpd-ssl doesn't > appear to do chroot'ing, at least not at a quick glance. Anybody know > of one that combines these features?

Re: recommendations for FTP server

> Any recommendations, experiences, thoughts? Running ftp over a vpn would work but its not the easiest option. Sftp is exactly what you need. Why not just run it on another port? Hope this helps. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact

Re: recommendations for FTP server (fwd)

From:[EMAIL PROTECTED] To: Stephen Gran <[EMAIL PROTECTED]> Subject: Re: recommendations for FTP server Date:Fri, 20 Jun 2003 18:37:43 + If security is a concern, you might want to use SecureFTP instead. It is part of the OpenSSH package. The sftp client is a part of most Linux a

Re: recommendations for FTP server

Stephen Gran sent the following message Today: SG> Hello all, SG> SG> I'd like the FTP server to not allow anonymous logins (which I assume SG> most can do), chroot users to their home directories, and have some sort SG> of encrypted connections (over SSL would be nice). I have thought about

RE: recommendations for FTP server

Have you thought about running sftp on a nonstandard port? John Wright Manager of Departmental Computing Radio/TV Services Indiana University 1229 E. Seventh Street, room 284 Radio-TV Center Bloomington, Indiana 47405 Phone: 812-855-8076 Fax: 812-855-0729 [EMAIL PROTECTED] -Original Message

Re: recommendations for FTP server

On Fri, 2003-06-20 at 18:56, Stephen Gran wrote: > Hello all, > > I am thinking about setting up an FTP server to be used by myself and a > couple of friends. The box it will be running on is basically stock > Woody, and is currently only running apache and NAT'ing for a LAN. > > I'd like the FT

Re: recommendations for FTP server

On Fri, Jun 20, 2003 at 02:24:22PM -0400, Matt Zimmerman wrote: > On Fri, Jun 20, 2003 at 12:56:01PM -0400, Stephen Gran wrote: > > > I am thinking about setting up an FTP server to be used by myself and a > > couple of friends. The box it will be running on is basically stock > > Woody, and is c

Re: recommendations for FTP server

This one time, at band camp, Matt Zimmerman said: > On Fri, Jun 20, 2003 at 12:56:01PM -0400, Stephen Gran wrote: > > I'd like the FTP server to not allow anonymous logins (which I assume > > most can do), chroot users to their home directories, and have some sort > > of encrypted connections (over

Re: recommendations for FTP server

* Stephen Gran <[EMAIL PROTECTED]> wrote: > I am thinking about setting up an FTP server to be used by myself and a > couple of friends. The box it will be running on is basically stock > Woody, and is currently only running apache and NAT'ing for a LAN. > > I'd like the FTP server to not allow a

Re: recommendations for FTP server

> Proftpd does support SSL/TLS. It's a module that comes with it, it's > just not enabled by default. Some nice docs here: > http://www.castaglia.org/proftpd/modules/mod_tls.html > http://www.castaglia.org/proftpd/doc/contrib/ProFTPD-mini-HOWTO-TLS.html Actually... it's enabled by default, that'

Re: recommendations for FTP server

On Fri, Jun 20, 2003 at 07:39:28PM +0100, Ian Goodall wrote: > > Any recommendations, experiences, thoughts? > > Running ftp over a vpn would work but its not the easiest option. Sftp is > exactly what you need. Why not just run it on another port? Last I checked, sftp requires a patch to chroot,

Re: recommendations for FTP server

* Stephen Gran ([EMAIL PROTECTED]) [030621 01:05]: > Yeah, that's what I have been thinking. I was sort of hoping there was > something else out there that did all this besides sftp, because several > of my friends will be connecting from Windoze boxes. I guess I'll just > point them to PuTTy and

Re: recommendations for FTP server

> > You could run sshd on another port. Really, if you want encryption and no > > anonymous connections, sftp is the right tool for the job. > > Yeah, that's what I have been thinking. I was sort of hoping there was > something else out there that did all this besides sftp, because several

Re: recommendations for FTP server (fwd)

From:[EMAIL PROTECTED] To: Dariush Pietrzak <[EMAIL PROTECTED]> Subject: Re: recommendations for FTP server Date:Sat, 21 Jun 2003 01:09:45 + I know about SSL/TLS support in Proftp, the only problem is that few clients support it (thanks fot the link to the Woody backport). I woul

Re: recommendations for FTP server

On Fri, 20 Jun 2003 16:25:30 -0400, Stephen Gran wrote: >This one time, at band camp, Matt Zimmerman said: [...] >Yeah, that's what I have been thinking. I was sort of hoping there was >something else out there that did all this besides sftp, because several >of my friends will be connecting from

Re: recommendations for FTP server

Quoting Marcus Frings ([EMAIL PROTECTED]): > Maybe will > help you to make a good decision. Hey, thanks, Marcus! That file reflects (and disclaims) my prejudice that anonymous ftp remains A Good Thing (see: http://linuxmafia.com/~rick/l