Open main menu

CDOT Wiki β

Changes

OPS335 FTP Lab

292 bytes added, 20:34, 11 October 2012
Adding warning about obsolescence and security risk.
*Test your firewall by logging into a second PC (try both Windows and Linux) and attempt an FTP connection to your gateway PC. Test both local user as well as anonymous connections.
===Set up your FTP Server (Active Mode)===
{{Admon/important|Obsolete| Note that the material in this step is obsolete. Active mode is considered an even bigger security risk (to the client) than standard ftp. Most ftp clients do not even support active mode anymore. Note how you would perform these steps, but do not do them.}}
#Edit /etc/vsftpd/vsftpd.conf and disable Passive mode (so now only Active mode is enabled) and then restart vsftpd.
#Test your firewall by logging into a second PC (try both Windows and Linux) and attempt an FTP connection to your gateway PC. Test both local user as well as anonymous connections.
 
===Log Packets with Netfilter===
#On the firewall/gateway add iptables log rules to monitor ftp traffic (control and data) for the following:
932
edits