OT - FTP & Firewalls etc

Luke McNeilage lmnau at impactdigital.com.au
Thu Apr 10 00:07:13 CDT 2008 

> She does not have static IP at home and we have a firewall. Any attempts
> to set her up so that she can access from home have failed (her IP
> address keeps changing)

That's sounds like a ridiculously heavy firewall. It sounds more like you
need to upgrade your FTP server. Just open all IP access on port 21, or at
least the subnet of her ISP if you can narrow it down to that. Make sure
your FTP doesn't allow anonymous or guest login. Make sure your gateway
doesn't respond to anonymous internet requests like ping, telnet and finger.

As long as your client has a strong username and password, you'll be fine.

If you don't want anybody snooping your clients username and password,
upgrade to secure FTP on port 115, but your client will need a FTP client
that will support sFTP, like filezilla (PC and Mac) or Transmit (Mac), as
sFTP isn't supported in the OS.

I've been doing this for a very long time on over 100 servers, and never had
a problem. Well once, but that was a guest guest account and some dumb
russian tried to upload a spoof webpage, but because I keep my FTP server
and my HTTP server separate (don't run IIS) it wasn't a problem.
-- 
Luke McNeilage
Information Technology Director
Internet and Electronic Document Management
Consultancy Services

Email  lmnau at impactdigital.com.au lmnau at d2p.com.au
Mobile                  (61) 0419 512 868
Impact Digital Office   (61 3) 9387 0999
SOHO                    (61 3) 9502 1999
skype                   lmcneilage
--------------------------------------------
COMMERCIAL-IN-CONFIDENCE
The information transmitted is intended only for the
person or entity to which it is addressed and may contain
confidential and/or privileged material. Any review,
retransmission, dissemination or other use of, or taking
of any action in reliance upon, this information by persons
or entities other than the intended recipient is prohibited.
If you received this in error, please contact the sender
and delete the material from any computer.
----------------------------------------------------------------

More information about the Creator mailing list