Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

securing an FTP service

from [Davide] Network Security [Permanent Link]
Subject: securing an FTP service
Date: 22 Nov 2004 23:11:56 -0000 


Hi everybody. would you please give me some hints for the followin situation?
In a win-based network, a folder contains some documents
that have to be made available to company employees when
they are not in the HQ but they are in a local branch office
this is currently implemented by a FTP server (win 2kserver); the ftproot is 
the root dir of the documents.
the server is connected to internet:

(internet)---(router)---(firewall)---(LAN)---(server)

employees access from a remote location office using their win logon 
credentials (no anonym access is provided). The local branch office acceses 
internet with a dinamic IP provided by ISP. What security concerns are rised in 
this setting? Should I use a DMZ, using the server to provide FTP services and 
moving the ftproot folder to another server INSIDE the DMZ (linked to a shared 
folder)?
How can I overcome the problem that FTP passwords are transmitted not 
enchrypted? Should a VPN between HQ provide the panacea for these problems?

thanks in advance
davide
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Spoofing an IP over the internet, Philip Wagenaar
Next by Date:  RE: USB Security, D. Weiss
Previous by Thread:  Multiuser Password Manager, Thiago Lima
Next by Thread:  RE: securing an FTP service, pingywon
Indexes:  [Date] [Thread] [Top] [All Lists]