[AuckLUG] Which Distro for small website/FTP
Martin Bähr
mbaehr at email.archlab.tuwien.ac.at
Fri Aug 3 16:40:41 NZST 2007
On Fri, Aug 03, 2007 at 04:25:52PM +1200, Guy K. Kloss wrote:
> And: Do you REALLY need an ftp server? FTP is usually one of the single most
> vulnerable services on the net.
really?
doesn't that depend on the ftp software you use?
i don't believe that ftp is inherently more insecure than eg http with
basic authentication.
the only insecurity of ftp comes from sending passwords unencrypted.
http does the same.
> And setting up a proper FTP server (if one
> must) with security in mind is not simple (chroot environment is highly
> suggested), and goes well beyond installing and configuring a server package.
that again depends on the server software you use.
if you trust webservers, then you should also trust any ftp server that
comes as part of a webserver. (there are a few)
greetings, martin.
--
cooperative communication with sTeam - caudium, pike, roxen and unix
offering: programming, training and administration - anywhere in the world
--
pike programmer working in new zealand open-steam.org|webhaven.co.nz
unix system- bahai.or.at iaeste.(tuwien.ac|or).at
administrator (caudium|gotpike).org is.schon.org
Martin Bähr http://www.iaeste.or.at/~mbaehr/
More information about the AuckLUG
mailing list