LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page FTP Security Problem
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 10-26-2005, 06:44 AM   #1
carlosinfl
Senior Member
 
Registered: May 2004
Location: Orlando, FL
Distribution: Arch
Posts: 2,905

Rep: Reputation: 77
Exclamation FTP Security Problem

So I have vsFTPd working great on my Debian server with some small minor permission issues however the main thing that scares me is when I login to my FTP account using just II (Internet Explorer), once the window shows all the files and the user double clicks the file he or she desires, you see this below the window

http://i4.photobucket.com/albums/y14...ill/vsftpd.jpg

As you can see from the image above, when the user double clicks the file straight from the ftp server, you can see their login and password in plain text during the download process.

This however does not happen when I take the desired file from the FTP server and "drah * drop" it to my local machine. Then I just get the status transfer bar with no login information shown. This is fine however it's natural for most people to just double click the desired file and this is where I have the security problem.

Can anyone provide a simple solution?
 
Old 10-26-2005, 09:54 AM   #2
underscorelinux
LQ Newbie
 
Registered: Apr 2005
Distribution: Slackware 10 All the way!!!!
Posts: 24

Rep: Reputation: 15
Yeah.

Either drag and drop, or just goto:

Start->Run

cmd(or command)

cd directory(where you want the file to appear)

username

password

ftp serveraddress

cd directory

get file

quit

This 'issue' you're talking about is an issue with ftp.
Look in the urlbar when you are logged in ftp via a browser, should say ftp://usernameassword@domainname.whatever
If you want secure authentication, use ssh and PuTTY
Last edited by underscorelinux; 10-26-2005 at 09:58 AM.
 
Old 10-26-2005, 10:04 AM   #3
carlosinfl
Senior Member
 
Registered: May 2004
Location: Orlando, FL
Distribution: Arch
Posts: 2,905

Original Poster
Rep: Reputation: 77
Yes but I can't upload / download files via SSH.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
ftp security msamuels Linux - General 3 05-31-2005 11:58 PM
ftp security spate Linux - Software 1 01-19-2003 06:04 PM
FTP Security?? Milkman00 Linux - Software 3 08-10-2002 11:10 PM
FTP security ! chuck77 Linux - General 4 03-05-2002 12:09 AM
FTP security vcheah Linux - Security 6 01-06-2002 04:13 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 06:41 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration