?
Solved

Questions for FTP in IIS 6.0

Posted on 2013-06-17
4
Medium Priority
?
323 Views
Last Modified: 2013-06-17
I have created a FTP to point to a website so that a user can update the website through FTP. It works, but want to make sure if I set up properly.

Windows 2003 SP2
IIS 6.0
website: www.example.com 

1. Default FTP was not there, so I created it pointing to c:\inetpub\ftproot with Read and Log visits checked. No user isolation selected. IP address 'Unassigned' selected.

2. Then I created a virtual directory 'example.com' pointing to the folder where the website www.example.com files are. I gave Read,Write, and Log visits permission on the virtual directory.

3. I created a FTP local user account and gave 'Modify' NT user rights to the website folder for the user.

This setting works, what else can I do to tighten security?
Also, is it possible to run  two FTP sites, one with user isolation with AD and the above FTP with 'Unassigned IP Address'? The webserver has single NAT IP address set up in router to public.
0
Comment
Question by:crcsupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 20

Accepted Solution

by:
edster9999 earned 2000 total points
ID: 39254399
The first thing that springs out is FTP.  When you login with standard FTP you send the password in clear text.
That means anyone on route or on the same Wireless network as you can see your password floating by.
FTP is long dead.  Abandon it and look up SFTP
0
 
LVL 1

Author Comment

by:crcsupport
ID: 39254470
Any recommendation for FTPS with windows 2003?
0
 
LVL 1

Author Comment

by:crcsupport
ID: 39254483
Filezilla FTPS server seems good.
0
 
LVL 20

Expert Comment

by:edster9999
ID: 39254611
Yes Filezilla is pretty good and stable - I used it a few times.
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to showing a 404 error page to your visitors, you do not want that generic page to show, and you especially do not want your hosting provider’s ad error page to show either. In this article, I will show you how to enable the custom 40…
While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question