ftp
play

FTP File Transfer Protocol Computer Center, CS, NCTU FTP FTP - PowerPoint PPT Presentation

Jun 07, 2023 •1.04k likes •1.19k views

FTP File Transfer Protocol Computer Center, CS, NCTU FTP FTP File Transfer Protocol Used to transfer data from one computer to another over the internet. Client-Server Architecture. Separated control/data connections.

  1. FTP File Transfer Protocol

  2. Computer Center, CS, NCTU FTP  FTP • File Transfer Protocol • Used to transfer data from one computer to another over the internet. • Client-Server Architecture. • Separated control/data connections. • Modes:  Active Mode, Passive Mode • Request For Comments (RFCs):  RFC 959 – File Transfer Protocol  RFC 2228 – FTP Security Extensions  RFC 2428 – FTP Extensions for IPv6 and NATs  RFC 2640 – UTF-8 support for file name  RFC 2324 – Hyper Text Coffee Pot Control Protocol 2

  3. Computer Center, CS, NCTU FTP – Security  Security concern • As we seen, FTP connections (both command and data) are transmitted in clear text. • What if somebody sniffing the network?  We need encryption.  Solutions • FTP over SSH  So called secure-FTP(sftp).  Both commands and data are encrypted while transmitting.  One connection, but poor performance. • FTP over TLS  Only commands are encrypted while transmitting.  Better performance. 3

  4. Computer Center, CS, NCTU FTP – Pure-FTPd (1)  Introduction • A small, easy to set up, fast and secure FTP server • Support chroot • Restrictions on clients, and system-wide. • Verbose logging with syslog • Anonymous FTP with more restrictions • Virtual Users, and Unix authentication • FXP (File eXchange Protocol) • FTP over TLS • UTF-8 support for filenames 4

  5. Computer Center, CS, NCTU FTP – Pure-FTPd (2)  Installation • Ports: /usr/ports/ftp/pure-ftpd • Options 5

  6. Computer Center, CS, NCTU FTP – Pure-FTPd (3) • Other options • WITH_CERTFILE for TLS  Default: /etc/ssl/private/pure-ftpd.pem • WITH_LANG  Change the language of output messages  Startup: • Add pureftpd_enable=“YES” in /etc/rc.conf 6

  7. Computer Center, CS, NCTU FTP – Pure-FTPd Configurations(1)  Configurations: • File: /usr/local/etc/pure-ftpd.conf • Documents  Configuration sample: /usr/local/etc/pure-ftpd.conf.sample – All options are explained clearly in this file.  Other documents – See /usr/local/share/doc/pure-ftpd/* Randy [/usr/local/share/doc/pure-ftpd] W7 -randy- ls AUTHORS README README.MySQL pure-ftpd.png CONTACT README.Authentication-Modules README.PGSQL pureftpd.schema COPYING README.Configuration-File README.TLS HISTORY README.Contrib README.Virtual-Users NEWS README.LDAP THANKS 7

  8. Computer Center, CS, NCTU FTP – Pure-FTPd Configurations(2) # Cage in every user in his home directory ChrootEveryone yes # If the previous option is set to "no", members of the following group # won't be caged. Others will be. If you don't want chroot()ing anyone, # just comment out ChrootEveryone and TrustedGID. TrustedGID 0 # PureDB user database (see README.Virtual-Users) PureDB /usr/local/etc/pureftpd.pdb # If you want simple Unix (/etc/passwd) authentication, uncomment this UnixAuthentication yes # Port range for passive connections replies. - for firewalling. PassivePortRange 30000 50000 # This option can accept three values : # 0 : disable SSL/TLS encryption layer (default). # 1 : accept both traditional and encrypted sessions. # 2 : refuse connections that don't use SSL/TLS security mechanisms, # including anonymous sessions. # Do _not_ uncomment this blindly. Be sure that : # 1) Your server has been compiled with SSL/TLS support (--with-tls), # 2) A valid certificate is in place, # 3) Only compatible clients will log in. TLS 2 # UTF-8 support for file names (RFC 2640) # Define charset of the server filesystem and optionnally the default charset # for remote clients if they don't use UTF-8. # Works only if pure-ftpd has been compiled with --with-rfc2640 # FileSystemCharset UTF-8 # ClientCharset UTF-8 8

  9. Computer Center, CS, NCTU FTP – Pure-FTPd Problem Shooting  Logs Location • In default, syslogd keeps ftp logs in /var/log/xferlog • Most frequent problem  pure-ftpd: (?@?) [ERROR] Unable to find the 'ftp' account – It’s ok, but you may need it for Virtual FTP Account.  pure-ftpd: (?@?) [ERROR] Sorry, but that file doesn't exist: [/etc/ssl/private/pure-ftpd.pem] – If you set TLS = 2, then this file is needed.  How to generate a pure-ftpd.pem? – See README.TLS 9

  10. Computer Center, CS, NCTU FTP – Pure-FTPd Tools  pure-*  pure-ftpwho • List information of users who use the FTP server now.  pure-pw • To create Virtual Users using PureDB • pure-pw(8) • See README.Virtual-Users 10

  11. Computer Center, CS, NCTU FTP – More Tools  ftp/pureadmin • Management utility for the PureFTPd  ftp/lftp • A powerful functional client • Support TLS  ftp/wget • Retrieve files from the Net via HTTP(S) and FTP  ftp/mget • Multithreaded commandline web-download manager  FileZilla • An FTP Client for Windows • Support TLS 11

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

FR&D FUNDING OPPORTUNITIES AUGUST 25, 2016 MARK KURT & AMY OVERMAN, CO-CHAIRS FR&D

FR&D FUNDING OPPORTUNITIES AUGUST 25, 2016 MARK KURT & AMY OVERMAN, CO-CHAIRS FR&D

FR&D FUNDING OPPORTUNITIES AUGUST 25, 2016 MARK KURT & AMY OVERMAN, CO-CHAIRS FR&D COMMITTEE New Members, term 2016-2018 Diane Duffy (SoHS), at-large Kacy Kim (LSB), at-large Excel (Qie) Li (Math/Sci), at-large Federico Pous

518 views • 19 slides
On the conference USB sticks and Tails. Joel Alwen IST Austria USB Stick Design Goals 1.

On the conference USB sticks and Tails. Joel Alwen IST Austria USB Stick Design Goals 1.

Rump Session 2016 On the conference USB sticks and Tails. Joel Alwen IST Austria USB Stick Design Goals 1. Automount Proceedings on any live system USB Stick Design Goals 1. Automount Proceedings on any live system 2. Bootable Tails install

764 views • 28 slides
ENERGY STAR Connected Thermostats Stakeholder Working Meeting November 16, 2018 1 Attendees

ENERGY STAR Connected Thermostats Stakeholder Working Meeting November 16, 2018 1 Attendees

ENERGY STAR Connected Thermostats Stakeholder Working Meeting November 16, 2018 1 Attendees Abigail Daken, EPA Ethan Goldman, VEIC Dan Baldewicz, ICF for EPA Dan Fredman, VEIC Leo Rainer, LBNL Phillip Kelsven, BPA Michael Blasnik,

654 views • 36 slides
Structured Overlays: Eclipse Attacks on Overlay Networks April 28th, 2006 Wyman Park 4 th Floor

Structured Overlays: Eclipse Attacks on Overlay Networks April 28th, 2006 Wyman Park 4 th Floor

Structured Overlays: Eclipse Attacks on Overlay Networks April 28th, 2006 Wyman Park 4 th Floor Conference Room Presentation by: Dan Liu & Jay Zarfoss 1 The idea of churn as shelter from route poisoning attacks is an interesting, if

874 views • 44 slides
Open Source Security Tool Turbo Talks Wireshark Sharkfest 2011 Gordon Fyodor Lyon Nmap

Open Source Security Tool Turbo Talks Wireshark Sharkfest 2011 Gordon Fyodor Lyon Nmap

Insecure.Org Insecure.Org Open Source Security Tool Turbo Talks Wireshark Sharkfest 2011 Gordon Fyodor Lyon Nmap Security Scanner Project Tod Beardsley Metasploit Project (Rapid7) Thomas D'Otreppe Aircrack-ng Insecure.Org

279 views • 11 slides
RLOGIN pseudo- terminal TCP/IP TCP/IP terminal login driver driver shell kernel kernel

RLOGIN pseudo- terminal TCP/IP TCP/IP terminal login driver driver shell kernel kernel

TELNET vs. telnet TELNET is a protocol that provides a general, bi- CSCE 515: directional, eight-bit byte oriented communications facility. Computer Network telnet is a program that supports the TELNET Programming protocol over

530 views • 9 slides
3.3 FTP File Transfer Protocol (FTP) is first published in 1971 (RFC 114) that were

3.3 FTP File Transfer Protocol (FTP) is first published in 1971 (RFC 114) that were

3.3 FTP File Transfer Protocol (FTP) is first published in 1971 (RFC 114) that were implemented on hosts at MIT. In 1985, a standard FTP is published as RFC 959. Several extensions are published since then including anonymous FTP, secure

1.13k views • 46 slides
Introduction to Network Security Chapter 11 Remote Access Security Dr. Doug Jacobson -

Introduction to Network Security Chapter 11 Remote Access Security Dr. Doug Jacobson -

Introduction to Network Security Chapter 11 Remote Access Security Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics Remote Access Telnet Rlogin X-Windows FTP General Countermeasures

1.48k views • 104 slides
Applications: Telnet, rlogin, ftp, Sun RPC, nfs, finger, whois, X & % telnet1.tex

Applications: Telnet, rlogin, ftp, Sun RPC, nfs, finger, whois, X & % telnet1.tex

' $ AIS 1 Applications: Telnet, rlogin, ftp, Sun RPC, nfs, finger, whois, X & % telnet1.tex February 3, 1998 ' $ AIS 2 Remote login remote login to host from host to host telnet, rlogin rlogin: mostly Unix systems

769 views • 30 slides
Future Work Different Cleaners. Assess disk utilization vs. performance for LFS in

Future Work Different Cleaners. Assess disk utilization vs. performance for LFS in

Future Work Different Cleaners. Assess disk utilization vs. performance for LFS in TP1-like benchmarks. Try to make FFS recover quickly (do inode and block allocation in batches). Figure out if LFS is really viable. Papers

667 views • 34 slides
Auditing Chapter 25 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 25-1

Auditing Chapter 25 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 25-1

Auditing Chapter 25 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 25-1 Outline Overview What is auditing? What does an audit system look like? How do you design an auditing system? Auditing mechanisms

1.4k views • 88 slides
A NEW IDENTIFICATION SCHEME BASED ON THE PERCEPTRONS PROBLEM David POINTCHEVAL L.I.E.N.S.

A NEW IDENTIFICATION SCHEME BASED ON THE PERCEPTRONS PROBLEM David POINTCHEVAL L.I.E.N.S.

A NEW IDENTIFICATION SCHEME BASED ON THE PERCEPTRONS PROBLEM David POINTCHEVAL L.I.E.N.S. Ecole Normale Sup erieure 45, rue dUlm F-75230 Paris cedex 05 available on anonymous ftp: ftp.ens.fr in /pub/reports/liens/liens-95-2 WWW:

578 views • 8 slides
Vu Vuln lnera rabil bility ity As Assessm ssment nts s on SC SCAD ADA A Sy Systems:

Vu Vuln lnera rabil bility ity As Assessm ssment nts s on SC SCAD ADA A Sy Systems:

Vu Vuln lnera rabil bility ity As Assessm ssment nts s on SC SCAD ADA A Sy Systems: stems: Outsm tsmarting arting the Smart rt Grid id Fadli B. Sidek BSidesVienna 2014 Security Specialist @ Whoami SecureSingapore

833 views • 49 slides
QED: A grand unified theory? John Harrison Intel Corporation 18th July 2014 (09:0009:35)

QED: A grand unified theory? John Harrison Intel Corporation 18th July 2014 (09:0009:35)

QED: A grand unified theory? John Harrison Intel Corporation 18th July 2014 (09:0009:35) 14th March 1993: The QED mailing list To: avenhaus@de.uni-kl.informatik, bibel@de.th-darmstadt.informatik.intellektik, bledsoe@edu.utexas.cs,

520 views • 41 slides
Data Support Readiness for the AIRS Mission at the DAAC George Serafino Code 902, NASA/GSFC

Data Support Readiness for the AIRS Mission at the DAAC George Serafino Code 902, NASA/GSFC

Data Support Readiness for the AIRS Mission at the DAAC George Serafino Code 902, NASA/GSFC AIRS Science Team Meeting February 14, 2002 6/24/03 DAAC Data Support Services Basic services include: User support via dedicated Atmospheric

428 views • 11 slides
Show n Tell (Berkeley Style) Bruce A. Mah bmah@tenet.Berkeley.EDU 15 June 1992 Show

Show n Tell (Berkeley Style) Bruce A. Mah bmah@tenet.Berkeley.EDU 15 June 1992 Show

Show n Tell (Berkeley Style) Bruce A. Mah bmah@tenet.Berkeley.EDU 15 June 1992 Show n Tell (bmah) 1/8 What Ive Been Doing RCAP (Will he ever finish?) XUNET 3 (The Search for Gigabits) Sendmail (Once a sysadmin...) Show

426 views • 8 slides
JAP Web-Mixes Stefan Kpsell, TU Dresden, sk13@inf.tu-dresden.de Overview Statistics

JAP Web-Mixes Stefan Kpsell, TU Dresden, sk13@inf.tu-dresden.de Overview Statistics

JAP Web-Mixes Stefan Kpsell, TU Dresden, sk13@inf.tu-dresden.de Overview Statistics Mix Development and Deployment How to attract Developers ? Attracting Users Abuse Results of a users Survey Overview

441 views • 17 slides
Vulnerable Machines with Ansible Nathaniel Beckstead whoami Nathaniel Beckstead Automation

Vulnerable Machines with Ansible Nathaniel Beckstead whoami Nathaniel Beckstead Automation

Vulnerable Machines with Ansible Nathaniel Beckstead whoami Nathaniel Beckstead Automation Infrastructure Tooling scriptingis.life 2 Why Vulnerable Machines? King of the Hill Practice Red team - scan and exploit Blue team

304 views • 18 slides
INTERNET CLIENT PROGRAMMING USING PYTHON C U A U H T E M O C C A R B A J A L I T E S M C E M A

INTERNET CLIENT PROGRAMMING USING PYTHON C U A U H T E M O C C A R B A J A L I T E S M C E M A

INTERNET CLIENT PROGRAMMING USING PYTHON C U A U H T E M O C C A R B A J A L I T E S M C E M A P R I L 0 6 , 2 0 1 3 1 INTRODUCTION In the previous lecture we took a look at low-level networking communication protocols using sockets.

1.16k views • 76 slides
Anonymity Networks for Crypto Geeks, the Department of Defense, and you. Nick Mathewson

Anonymity Networks for Crypto Geeks, the Department of Defense, and you. Nick Mathewson

Anonymity Networks for Crypto Geeks, the Department of Defense, and you. Nick Mathewson <nickm@freehaven.net> The Free Haven Project MIT SIPB talk; 2 Feb 2006 This talk is about anonymity. Technical Social 1. What is it? 2. Why does

1.02k views • 71 slides
User Management Xavier Martorell-Bofill 1 Ren Serral-Graci 1 Universitat Politcnica de

User Management Xavier Martorell-Bofill 1 Ren Serral-Graci 1 Universitat Politcnica de

User Management Xavier Martorell-Bofill 1 Ren Serral-Graci 1 Universitat Politcnica de Catalunya (UPC) May 26, 2014 Introduction Databases Baixa Login Permisos Lectures System administration introduction 1 Operating System

821 views • 28 slides
Unix Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C. Ding - COMP4631 - L19 1

Unix Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C. Ding - COMP4631 - L19 1

Unix Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C. Ding - COMP4631 - L19 1 Agenda A short history of Unix Login and user accounts access control Instances of general security principles Audit configuration

641 views • 38 slides
Simulation in Particle Physics David Grellscheid What are the fundamental building blocks of

Simulation in Particle Physics David Grellscheid What are the fundamental building blocks of

Simulation in Particle Physics David Grellscheid What are the fundamental building blocks of Nature? T-Shirt, explain rules here T-Shirt, explain rules here 4e candidate with m 4e = 124.6 GeV p T (electrons)= 24.9, 53.9, 61.9, 17.8 GeV m

1.09k views • 50 slides
Outline Clare in our context Religion and contemplation Violence as Clares context

Outline Clare in our context Religion and contemplation Violence as Clares context

9/25/19 Class 1b Life as a Sacred Text: Clare of Assisi Outline Clare in our context Religion and contemplation Violence as Clares context Radical poverty as a response to violence Responses to violence in our world 1 9/25/19

513 views • 12 slides

More recommend