I would stay away from wuftpd. Check out proftpd
I've heard that so often "I would stay away from wuftpd. Check out proftpd"
Using the Redhat support page It mentions "Basic configuration setup for both wu-ftpd and proftpd"
Where is proftpd found? How do I install it?
I see no reference to it anywhere else?
Not the best.. just what I do.
I would also agree that SSH is the way to go (no telnet).
As for FTP servers, I have used wuftp before and found it worked fine but took some tweaking. Now I use vsftp and it works great.
Configure it to only allow specific users in. Make these user accounts have a shell of 'nologin' (or whatever your distro uses). And use a period in the passwd file to chroot them to where you want them. I usually disable anonymous logins as well.
Anybody see any problems with this?
Re: Not the best.. just what I do.
Totally agree, SSH is a great remote admin tool that provides secure encrypted communications. If you want to see the difference between secure and insecure I suggest that you install ethereal and perform a capture via ssh and a capture via ssh you will notice the difference i.e. no username/password broadcasted over the network.
Originally Posted by sparkix
SSH onces configured can be very powerful and secure. I would suggest permitrootlogins to no. A listen address rather than listening to any ip i.e. listen 192.168.1.50 and changing the port to a higher port such as 24567.
Configuration of users for specific services rather than general user login and anonymous logins is a good technique as it gives you greater scope to log, detect and prevent attacks.
ProFTPD would be my choice of FTP Server along with some configuration.
Get some bandwidth monitoring and permissions set and we can keep close tracks on what is going on.