Solved

Questions for FTP in IIS 6.0

Posted on 2013-06-17
4
317 Views
Last Modified: 2013-06-17
I have created a FTP to point to a website so that a user can update the website through FTP. It works, but want to make sure if I set up properly.

Windows 2003 SP2
IIS 6.0
website: www.example.com 

1. Default FTP was not there, so I created it pointing to c:\inetpub\ftproot with Read and Log visits checked. No user isolation selected. IP address 'Unassigned' selected.

2. Then I created a virtual directory 'example.com' pointing to the folder where the website www.example.com files are. I gave Read,Write, and Log visits permission on the virtual directory.

3. I created a FTP local user account and gave 'Modify' NT user rights to the website folder for the user.

This setting works, what else can I do to tighten security?
Also, is it possible to run  two FTP sites, one with user isolation with AD and the above FTP with 'Unassigned IP Address'? The webserver has single NAT IP address set up in router to public.
0
Comment
Question by:crcsupport
  • 2
  • 2
4 Comments
 
LVL 20

Accepted Solution

by:
edster9999 earned 500 total points
ID: 39254399
The first thing that springs out is FTP.  When you login with standard FTP you send the password in clear text.
That means anyone on route or on the same Wireless network as you can see your password floating by.
FTP is long dead.  Abandon it and look up SFTP
0
 
LVL 1

Author Comment

by:crcsupport
ID: 39254470
Any recommendation for FTPS with windows 2003?
0
 
LVL 1

Author Comment

by:crcsupport
ID: 39254483
Filezilla FTPS server seems good.
0
 
LVL 20

Expert Comment

by:edster9999
ID: 39254611
Yes Filezilla is pretty good and stable - I used it a few times.
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Preparing an email is something we should all take special care with – especially when the email is for somebody you may not know very well. The pressures of everyday working life stacked with a hectic office environment can make this a real challen…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

827 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question