LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 05-15-2009, 03:40 PM   #1
frznchckn
Member
 
Registered: Jun 2006
Location: CA
Distribution: Ubuntu, CentOS, Scientific Linux
Posts: 97

Rep: Reputation: 15
Question ftp lockdown


The SA shall configure the FTPd service to disallow read access whenever write permissions are required for anonymous FTP folders.

1) How can I tell if my box is running / providing the FTPd service?

2) How can I prevent anonymous FTP?

3) How can I prevent FTP and force SFTP?

3) if I wanted to, how can I prevent any (S)FTP from happening?
 
Old 05-15-2009, 07:51 PM   #2
rayfordj
Member
 
Registered: Feb 2008
Location: Texas
Distribution: Fedora, RHEL, CentOS
Posts: 475

Rep: Reputation: 73
Any particular distro and/or ftp daemon?

assuming vsftpd:
1) /etc/rc.d/init.d/vsftpd status
2) modify /etc/vsftpd/vsftpd.conf and disable anonymous logins
-- reference inline documentation or man vsftpd.conf
3) SFTP is SSH-FTP; it uses the SSH with an ftp-style subsystem
-- FTPS (TLS/SSL FTP) can be configured and forced in vsftpd.conf
-- -- reference inline documentation or man vsftpd.conf
4) disable/restrict SSH access or disable the sftp-subsystem

 
Old 05-16-2009, 05:55 PM   #3
frznchckn
Member
 
Registered: Jun 2006
Location: CA
Distribution: Ubuntu, CentOS, Scientific Linux
Posts: 97

Original Poster
Rep: Reputation: 15
The box is running Red Hat 5 I believe. It's a relatively new system, I'm the only one that uses it, and I know I have no setup / turned on FTP. Also I did not see /etc/rc.d/init.d/vsftpd, so I don't think it gets started by default?
 
Old 05-16-2009, 06:35 PM   #4
rayfordj
Member
 
Registered: Feb 2008
Location: Texas
Distribution: Fedora, RHEL, CentOS
Posts: 475

Rep: Reputation: 73
it may or may not be installed. likely not installed if no vsftpd.conf.
you should be able to install it with:
Code:
yum install vsftpd
that should also give you the vsftpd service, since i now know RHEL5 is distro you can easily use chkconfig and service commands to start it and configure it to start on boot
Code:
service vsftpd status
service vsftpd start
chkconfig --list vsftpd
chkconfig vsftpd on
after configuring it to your requirements first... of course

 
Old 05-16-2009, 06:43 PM   #5
frznchckn
Member
 
Registered: Jun 2006
Location: CA
Distribution: Ubuntu, CentOS, Scientific Linux
Posts: 97

Original Poster
Rep: Reputation: 15
I think I'll go with keeping it not installed. All of our file interactions are done using scp, I just had to verify that anon ftp couldn't happen. Which it can't if it's not installed!

thanks!
 
Old 05-17-2009, 10:24 AM   #6
cloud9repo
Member
 
Registered: Oct 2008
Location: Middle TN
Posts: 134

Rep: Reputation: 19
Quote:
Originally Posted by frznchckn View Post
The SA shall configure the FTPd service to disallow read access whenever write permissions are required for anonymous FTP folders.

1) How can I tell if my box is running / providing the FTPd service?

2) How can I prevent anonymous FTP?

3) How can I prevent FTP and force SFTP?

3) if I wanted to, how can I prevent any (S)FTP from happening?
Encryption and passwords seem most effective. Hack the daemon a bit, so you've got your costume.

Customize with a bit a fake access. Then, if all else fails, use another approach all together.

DO NOT disclose personal info to anyone, no matter how NICE they seem...
 
  


Reply

Tags
anonymous, ftp, sftp


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
lockdown program daven1 Programming 9 02-04-2009 01:50 PM
FreeBSD lockdown?? fatum112 *BSD 12 08-03-2006 06:59 AM
Looking for advise on WWW/SSH/FTP Lockdown nistelrooy Linux - Security 4 10-11-2005 05:21 AM
Lockdown Obie Linux - Security 10 07-30-2004 03:07 AM
Lockdown or not? neil Linux - Security 5 04-08-2002 02:31 AM


All times are GMT -5. The time now is 08:00 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration