Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hey everyone, I was sure where to post this so I thought I'd give the general forum a try as it doesn't really have to do with linux in particular.
Anyways, here's the situation....
I've put TLS security on my ftp server (vsftp). I would like to make this method required, however I have some clients that currently use Internet Explorer to connect to the ftp site by typing
ftp://<user>@<domain>
If I restrict the ftp site to only allow connections with TLS this method no longer works.
Is there a way to use a web browser to connect to a FTP server that requires TLS?
I don't know what TLS is, but I access my linux box from Windows using sftp. I found a really nice (free) Windows GUI client that does sftp---I think is is something like WinSCP. Maybe is includes the TLS protocol....?
Try Google--that is how I found the Windows sftp client.
From what I understand TLS is an extension of SSL, whereas sftp is ftp using ssh, therefore I'm guessing that each sftp client requires a login. I don't really want to go this way, right now all ftp users have very restrictive rights (nologin) that I would to keep. I can use FileZilla as a windows client and it works great, however the problem arises in that some of my clients (in the human sense) will not want to download and learn another program (FileZilla) when they have been using their web browser previously. If I had it my way they would just use FileZilla and that would be the end of it.
If you don't want to give your users login shell, but want to use secure ftp, consider looking at rssh:
Descripion of Debian package rssh:
Quote:
Restricted shell allowing only scp, sftp, cvs, rsync and/or rdist
rssh is a restricted shell to be used as a substitute of the login
shell to allow users to perform only scp/sftp/cvs/rsync,rdist
operations.
.
The security implications are high, so the home directories have
to be set following the instructions provided.
So, by setup rssh you can allow your users cat use any sftp client, without direct access to shell on server.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.