FTP Access
In a Nutshell - CIW Course Section 3, Part B1, Chapter 10
Configuring Anonymous Access with FTP in IIS
User names and passwords in FTP are transmitted over the network without data encryption. This raises the possibility of interception using a standard packet analyser. For this reason it is often better to configure anonymous access only.
From the "Security Accounts" tab of the FTP Site properties, check the "Allow only anonymous connections" option. It is possible to have both options checked so that users can log in with their own account if desired.
Controlling Access
By using the "Directory Security" tab you may grant or deny access based on the client IP address. It is likely that you will deny access to ALL, and then grant access to certain, known and trusted, IP addresses.
Configuring Anonymous Access with FTP in Unix
First of all it should be determined if anonymous access is installed. To do this enter the command "rpm -qa I grep anon"
The etc/ftpaccess file is used to control access to the FTP server.
| class all real,guest * class anonymous * limit all 100 Any /etc/limitdocs/user.limit limit anon 50 Any /etc/limitdocs/anon.limit email root@localhost loginfails 5 |
In the above example, the second line creates the anon class. The fifth line limits the number of anonymous connections to 50 and the over limit warning message is contained in the file /etc/limitdocs/anon.limit.