How to secure a Windows 2000 FTP site.

I took an old PC and installed Win2K on it, then IIS and setup an FTP site. I would like to know about securing it. The stuff that will be in the FTP folder is not really that important to me, but I would just like to know I have set it up properly. I turned off anonymous login and gave the user a password protected account, set NTFS permisions on the folder specifically for the FTP user I setup and no one else, I gave the user read and write permissions. I set up logging. I then installed Sygate personal firewall and set up and tested it, it only showed ports 21 and 80 as being open and available all, others were in stealth mode. Does this sound like it is safe enough for what I am trying to do? Iss there anything I have overloooked or need to think about?
kevotronAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Rant32Commented:
You might want to consider the fact that FTP authentication is plain-text and unencrypted.
It is best if the FTP user has no other rights on the server or domain (create a dummy group, add the FTP users to it and, if you're in a domain, make it the primary group, then remove it from the Users group or Domain users)

The rest sounds fine to me!
0
captjjtCommented:
create local user account on the ftp server.

create user folder matching user name under ftproot

right click the new folder, under "security" add the new local ftp user account and give it modify permission. remove the everyone group.

it would be a good idea to have complex passwords that change often.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
OS Security

From novice to tech pro — start learning today.