FTPD & SSHD server
JJB
Barbish3 at adelphia.net
Sun May 23 19:47:24 PDT 2004
I think you are confused about difference between ssh and FTPD. FTPD
is enabled in inetd.conf. This FTP software gives FTP protocol
access the home directory of the person logging in. No account on
the FBSD box no FTP access. When logging in using FTP the id/pw is
passed over the internet as clear text that can be harvested with a
lot of effort and cost. This is normally restricted to private Lan
use only, IE; not used over the public internet. FTP uses port 21
for control channel and 20 for data channel in active mode and some
high port number for data channel in passive mode. Second security
problem in using FTP for public internet access is you have to leave
all the high port number open for inbound traffic in your firewall
and this is an very big security hole.
For these reasons the common practice is not to use FTP for public
internet access to your system. An public accessible anonymous FTP
server has special directory setting to protect against users
accessing other directories.
Ssh on the other hand is completely different. It has it's own FTP
protocol which uses the ssh port 22 for control and data. To use ssh
for remote public internet access to your FBSD box you need ssh
enabled in rc.conf and inbound rule for port 22 in your firewall.
Ssh has it's own built in command for FTP transfer. Ssh logs into
id/pw of account on FBSD box. To ssh and ssh/ftp from windows box to
FBSD box you need to use ssh client program on windows. Search the
questions archives for posts about windows ssh clients for where to
download free ones from.
-----Original Message-----
From: owner-freebsd-questions at freebsd.org
[mailto:owner-freebsd-questions at freebsd.org]On Behalf Of Bart
Silverstrim
Sent: Sunday, May 23, 2004 8:37 PM
To: Andri Kok
Cc: freebsd-questions at freebsd.org
Subject: Re: FTPD & SSHD server
On May 23, 2004, at 8:04 PM, Andri Kok wrote:
> Hi Bart,
>
> Thx for the reply. The problem that I had from windows was
"connection
> timeout". When I try to ssh to my BSD box, it prompts the login
name,
> than it hangs till it finally get connection time out. The same
goes
> with ftp and telnet.
There is a prompt that you enter a username to, then it just hangs
instead of giving a password prompt? Most definitely odd...
> Regarding the error logs, which ones should i check? he path would
be
> nice =) And thx for your suggestion, I'll try to do that as soon
as I
> have time (still got assignments to do ;) thx again -)
error logs should all be in the directory /var/log. Try a
connection,
and once it errors out, do a tail on any files that have their
timestamps updated indicating that they were just written to at the
time of your connection attempt...they might have info that could be
of
help.
-Bart
_______________________________________________
freebsd-questions at freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list