Solved

Questions for FTP in IIS 6.0

Posted on 2013-06-17
4
320 Views
Last Modified: 2013-06-17
I have created a FTP to point to a website so that a user can update the website through FTP. It works, but want to make sure if I set up properly.

Windows 2003 SP2
IIS 6.0
website: www.example.com 

1. Default FTP was not there, so I created it pointing to c:\inetpub\ftproot with Read and Log visits checked. No user isolation selected. IP address 'Unassigned' selected.

2. Then I created a virtual directory 'example.com' pointing to the folder where the website www.example.com files are. I gave Read,Write, and Log visits permission on the virtual directory.

3. I created a FTP local user account and gave 'Modify' NT user rights to the website folder for the user.

This setting works, what else can I do to tighten security?
Also, is it possible to run  two FTP sites, one with user isolation with AD and the above FTP with 'Unassigned IP Address'? The webserver has single NAT IP address set up in router to public.
0
Comment
Question by:crcsupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 20

Accepted Solution

by:
edster9999 earned 500 total points
ID: 39254399
The first thing that springs out is FTP.  When you login with standard FTP you send the password in clear text.
That means anyone on route or on the same Wireless network as you can see your password floating by.
FTP is long dead.  Abandon it and look up SFTP
0
 
LVL 1

Author Comment

by:crcsupport
ID: 39254470
Any recommendation for FTPS with windows 2003?
0
 
LVL 1

Author Comment

by:crcsupport
ID: 39254483
Filezilla FTPS server seems good.
0
 
LVL 20

Expert Comment

by:edster9999
ID: 39254611
Yes Filezilla is pretty good and stable - I used it a few times.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn about cloud computing and its benefits for small business owners.
When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question