How to prevent ftp server from being hacked?
-
Say I got a Win2k or Win2k3 server running IIS and FTP. What steps can I take to prevent FTP hacking? I think changing the port number from the default port is useless coz the hacker can just scan all your ports. What can be done to still keep the FTP working but secure from hacking?
Mainly, I am interested in protecting my website files from being tampered with. If there is an alternative to FTP, I am willing to consider it.
-
I'm no expert, but for the company that i worked with. We actually have all these rack-mounted hardware firewalls in the server farm.I heard that these dedicated rack-mounted firewall cost a few hundred dollars, you might want to consider something cheaper and similar for home use. Infact, most router would have some sort of NAT firewall implemented in it.
-
Firewall is not going to help since the FTP port is going to be kept open for uploading files to the webserver.
-
use ssh...
-
Windows server got support ssh? Besides, isn't that like Remote Desktop/Terminal Services already?
-
Just a website that i found through google, I'm not sure if these would help though.
-
The best way is to disconnect the server from the net...
-
Originally posted by caleb_chiang:
The best way is to disconnect the server from the net...
Can't be called a webserver then, can it?
-
Originally posted by GIB:
Windows server got support ssh? Besides, isn't that like Remote Desktop/Terminal Services already?
http://www.ssh.com/support/downloads/secureshellwks/non-commercial.htmlhttp://winscp.net/eng/index.php
both apps is using ssh...
-
ftp server is not secure, but if you insist to use ftp then you may set the firewall to only allow certain ip address to connect to your ftp server. this method can reduce the number of pple from hacking. it is not 100 percent secure but it is secure enough.
alternatively you may want to setup a vpn. this method is more secure. after you had establish the vpn connection then you can access your ftp port.