LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 01-29-2004, 08:55 AM   #1
Daiba
LQ Newbie
 
Registered: Jan 2004
Posts: 2

Rep: Reputation: 0
Ports have to be open?


Hi!

I want to set up a ftp server. it is allready working fine, but I had to open the port 21. (Ususal for ftp). No I ask myself, if this is not secure? I have 2 port scans a day. So anybody can enter my network? Is there a possibility, wehrer I needn" t open some ports? I hate open ports. I allredy tried alternate ports but they don"n t work.

Thanks for any answer!

sincerely yours
 
Old 01-29-2004, 09:01 AM   #2
MartinN
Member
 
Registered: Nov 2003
Location: Ronneby, Sweden
Posts: 555

Rep: Reputation: 30
Hi Daiba. Welcome to LinuxQuestions.

If you want to run a server (like ftp), then you must open a port in your firewall for it. Otherwise, a client from the outside can't communicate with it.

One alternative (but that's not a perfect solution either) is to use a non-standard port for the ftp server. Then, it's not obvious for a hacker that it's an ftp server on the other end. You would then have to tell your friends to connect to the server using an address like:
ftp://mycomputer.myisp.domain:15713

Make sure that your ftp server software is up to date and that it hasn't any known security flaws.

Regards
Martin
 
Old 01-29-2004, 09:03 AM   #3
jtshaw
Senior Member
 
Registered: Nov 2000
Location: Seattle, WA USA
Distribution: Ubuntu @ Home, RHEL @ Work
Posts: 3,892
Blog Entries: 1

Rep: Reputation: 67
You definitely have to have an open port in order to run a service such as FTP. But you certainly don't have to broadcast that it is open. Doing a port scan on my machine doesn't turn up anything, but if you try and connect with the ssh protocol on port 23 you will get a response.

Anyway, if you are really worried about security FTP is not the best method of transferring files, you can use sftp/scp protocol over the SSH port if you have sshd running. This will give you an SSL encrypted connection. Free clients like pscp and putty for windows will then let you connect to your machine and transfer files or get a console to play with.
 
Old 01-29-2004, 09:39 AM   #4
Daiba
LQ Newbie
 
Registered: Jan 2004
Posts: 2

Original Poster
Rep: Reputation: 0
Ports

Hi and thanks for your fast respond!

Well I understood, that I must open ports to let it run. But is this not a big lack of security? How do those big companys handle this - if they have a ftp platform.

So which programm is recommended for this ssh? (also for windows?)
And how did you made your port invisible? I have a hardware firewall.

Sorry for those many questions, i hope i am not getting on your nerves!

Greetings!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Cannot Open Mail Server Ports 25, 110, and 220. Other Ports will open. Binxter Linux - Newbie 9 11-29-2007 03:03 AM
open ports on linksys, i have ssh open but thats it PlatinumRik Linux - Security 1 07-07-2005 11:38 AM
Open ports! WWMPCDD Linux - Networking 6 10-28-2004 10:29 PM
How to open ports? kaboom Linux - Networking 1 01-05-2004 06:23 PM
open ports nakkaya Linux - General 2 02-05-2003 04:21 AM


All times are GMT -5. The time now is 03:46 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration