[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: ftp security (was Re: Yudit text-editor)
Well, this discussion seems to be boring for most of the list, so I
suggest that next remarks/questions/etc., will be posted privately
to me, and I'll answer them privately to the sender. Linux-IL
subscribers should not suffer because of us.
> why avoid non anonymous ftp? you can use ftp with kerberos authentication.
> (it doesn't send clear text passwords. same with telnet, rlogin, and rsh
> with kerberos.)
Tunneling your communication through ssh or kerberos or whatever, is
secure and safe (unless you don't use the latest version of
ssh/kerberos/etc.). But you must force your users to access your
server ONLY through the security mechanism. For example, if you want
to force them to access X only through ssh, you must deny 6000 and
allow 22. Otherwise they will continue to use the simple way.
--
Eli Marmor