Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
03-29-2007, 01:54 PM
|
#1
|
Member
Registered: Apr 2004
Location: /
Distribution: ubuntu (gutsy)
Posts: 46
Rep:
|
Defending against ftp attacks
Hello,
I also have an ftp service running. I do know that any service can be hacked, and ftp is an old one, so there are probably a lot of vulnerabilities for it.
Anyway, what are some of the most common methods hackers use in order to compromise ftp services, and how would I defend/secure my server against them? I can't afford to have my server taken down.
Thanks alot, I appreciate it,
otacon
|
|
|
03-29-2007, 02:25 PM
|
#2
|
Senior Member
Registered: Feb 2007
Location: The Tropics
Distribution: Slackware & Derivatives
Posts: 2,472
Rep:
|
Here is a good place to ask that: click here.
|
|
|
03-29-2007, 02:35 PM
|
#3
|
Member
Registered: Nov 2004
Location: Arizona
Distribution: Arch
Posts: 107
Rep:
|
when your saying that ftp is "old", you are referring to the protocol, there are new ftp servers/clients.
vsftpd is a proven secure ftp server in Linux, I would suggest that. Read up on some HOWTO's on google for configuring it properly, and I would suggest running it in a chroot environment for some added security.
Now, do you "need" to use ftp? why not use sftp (over ssh)? Its an encrypted connection and is much more secure then ftp.
|
|
|
04-02-2007, 02:01 PM
|
#4
|
Senior Member
Registered: Sep 2005
Location: Out
Posts: 3,307
Rep:
|
A few things possible specific to ftp:
- Brute force attack (if ftp passwords are system password then it's really bad)
- Ftp protocol trick: ftp bounce attack (scanning, local/remote Dos by exhausting network ports)
- Guessing your internal network adresses (maybe enumerating NATed machines or the number)
- Guessing the architecture by getting /bin/ls (chroot or not)
- Probably other things..
It all depends on your settings and which ftp server is used
Chroot helps
sftp, ftps, scponly are good things to check
|
|
|
All times are GMT -5. The time now is 10:13 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|