Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
07-14-2004, 03:41 PM
|
#1
|
Member
Registered: Aug 2003
Location: Little Rock, Arkansas
Distribution: RH, Fedora, Suse, AIX
Posts: 736
Rep:
|
Dumping FTP in favor of SCP or SFTP
I've been running ProFTPd for a while now, and I like it a lot... but of course I don't like the cleartext passwords.
I wanted to try SCP or SFTP, but I need a client that supports it. I looked at WinSCP which is excellent, but I had major problems getting it chrooted.
I also tried wrapping ProFTPd using TLS, but that was a pain too. Can anyone recommend a good howto for setting that up??? Any other alternatives I might consider??
|
|
|
07-14-2004, 04:00 PM
|
#2
|
Member
Registered: Jul 2004
Location: Sherbrooke, Quebec, Canada, North America, World, Milky Way
Distribution: Gentoo
Posts: 103
Rep:
|
You could always transfer files using SSH.
There's additional configuration needed and everything is encrypted. The only thing you need is a ssh file transfer client.
|
|
|
07-14-2004, 04:05 PM
|
#3
|
Member
Registered: Aug 2003
Location: Little Rock, Arkansas
Distribution: RH, Fedora, Suse, AIX
Posts: 736
Original Poster
Rep:
|
Ok, but what about chrooting people who login? I've never tried setting that up so I'm not sure how complicated that is. I've got a slew of users who will be using this, and I'm a bit wary about letting Joe-user login that way.
All I want to do is let people transfer files in the same manner they are using for FTP. These users are not really technical people, so turning them loose on SSH via command line isn't a good idea, methinks.
|
|
|
07-14-2004, 04:08 PM
|
#4
|
Member
Registered: Jul 2004
Location: Sherbrooke, Quebec, Canada, North America, World, Milky Way
Distribution: Gentoo
Posts: 103
Rep:
|
No you don't understand.
The way i'm describing works exactly like an ftp server, only it's over ssh. You have a window with local files and a window with remote files, etc.
I'm not sure wether or not users are chrooted in their homedir, but I know they won't have a hard time transfering files.
|
|
|
07-14-2004, 04:19 PM
|
#5
|
Member
Registered: Aug 2003
Location: Little Rock, Arkansas
Distribution: RH, Fedora, Suse, AIX
Posts: 736
Original Poster
Rep:
|
Your suggestion sounds great. A few screenshots perhaps? Maybe a link to somethign I can look at?? You described a couple of windows showing local and remote files... would this be a software package I can download and review? Or are you simply saying (very blue sky) that I should look for a package that would do what you're suggesting?
|
|
|
07-14-2004, 04:22 PM
|
#6
|
Member
Registered: Jul 2004
Location: Sherbrooke, Quebec, Canada, North America, World, Milky Way
Distribution: Gentoo
Posts: 103
Rep:
|
The client I was describing is actually a windows client I use when I transfer files to my slack server.
If you want to see it in "action", look at http://www.ssh.com/support/documenta...ransfer-3.html
(There are a lot of clients that support sFTP other than that one)
Last edited by netmask; 07-14-2004 at 04:30 PM.
|
|
|
07-14-2004, 04:31 PM
|
#7
|
Member
Registered: Aug 2003
Location: Little Rock, Arkansas
Distribution: RH, Fedora, Suse, AIX
Posts: 736
Original Poster
Rep:
|
Looks good! This is pretty much what I'm looking for. But of course, I still have the same problem of keeping my users chrooted to their home directories. I'll begin looking for info about this, unless somebody has a quick URL handy?
|
|
|
07-14-2004, 11:25 PM
|
#8
|
Senior Member
Registered: Sep 2002
Location: Nashville, TN
Posts: 1,552
Rep:
|
You could use scponly or rssh to chroot a user to their home directory.
|
|
|
All times are GMT -5. The time now is 02:14 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|