SEOMining SEOMining


Ecommerce Security   «Prev 

FTP Server Security

FTP servers are often vital to developing an e-commerce site. They are perfect for transferring large files and for providing common access to files during projects. If possible, disable anonymous access to the server. If anonymous access is required, consider enforcing one-time passwords. Such a scheme would require you to invest in costly software, but in certain instances, strong authentication is often worth the cost and inconvenience. It is also possible to deny read access to the FTP directories accessed by anonymous users. Under this less costly strategy, a hacker can't list the directory to learn about what files exist on the server. Legitimate users can simply remember what files they have uploaded and can ask a trusted colleague about the files they need to download. Also, you can create virtual FTP directories that are hidden from anonymous users. It is possible to password protect such directories, as well. Simple solutions like these can help you increase the security of your site.
Some cost and hassle may be involved. It is up to you to consider how much is appropriate for your site.

Many times third-party software packages, such as Web servers and FTP servers, will provide banners that indicate the version of the software that is running. Attacker can use this information to narrow their search of exploits to apply to these targets. In most cases, these banners can be suppressed or altered.
FTP is one of the oldest and most popular services found on the on the internet today. Serving as an easy and effective method by which to transfer files over a network, FTP has become a standard that is both accepted and widely accessible to users across almost every network and operating system in use today. In this article we will examine 10 options available native in Windows that can be used to secure an FTP site.
FTP is one of the oldest and most popular services found on the on the internet today. Serving as an easy and effective method by which to transfer files over a network, FTP has become a standard that is both accepted and widely accessible to users across almost every network and operating system in use today.
Windows 2000 comes with an FTP server as a part of IIS 5.0. Installed as a stand alone service, it is very rich in features. When combined with the other resources available inside Windows 2000 server, administrators are empowered with different options that can help make an FTP site more secure.
Having said that, we will examine 10 options available native in Windows 2000 that can be used to secure an FTP site. Some are pretty obvious but some are creative approaches that are not readily thought of by administrators. In addition to the tips below, add-on services such as VPNs or SSH are things to consider since there is the pesky issue of sending passwords clear text over the wire.