|
Joseph Mack wrote:
>
> Roberto Nibali wrote:
>
> > FTP is a bitch and totally broken by design.
>
> I see that ftp is hard to make secure.
You can't but you can do a lot of things to minimize full breaches.
> Do you recommend that people not use ftp and say instead use http for LVSs
> that are delivering files?
For example. Or at least put the ftp daemon in a chroot environment. I was
writing an kernel module to provide ftp when I found the following project:
http://ftpfs.sourceforge.net/
I haven't fully tested it and it's a very dangerous approach but it is
worth to have a look at it. Another possibility is to use the SuSE
ftp proxy suite. I'll post some results as soon as we tested it back
here.
Regards,
Roberto Nibali, ratz
--
mailto: `echo NrOatSz@xxxxxxxxx | sed 's/[NOSPAM]//g'`
|
