[nycbug-talk] Anonymous ftp upload questions

pete wright nomadlogic
Mon Aug 22 11:33:13 EDT 2005 

On 8/22/05, Marco Scoffier <marco at metm.org> wrote:
> 
> Hello all,
> 
> I have set up an ftp server to get people to upload large files (images,
> videos). I was debating how to do this for a while, and decided that
> because of the technical naivet? of the uploaders, anonymous ftp would
> be the way to go, I do have an http upload page but some large files are
> 750M+ and ftp at least does resume partial uploads.
> 
> Anyway I setup vsftpd, to allow anonymous uploads and block all
> downloads (don't want the warez kiddies using the server as a drop off
> point). But I am getting quite a few obvious warez uploads of 1mbtest.ptf
> and space.asp which looks like a script to get the characteristics of
> the server, which won't work because there is no http access to the
> machine.
> 
> None of the uploads work, but I am kind of annoyed at these test uploads,
> but I'm thinking there is very little I can do about this. Any ideas?
> Anyone else have a similar set up? Would you set up a no privaledges
> account, rather than go anonymous, seems like more of a hassle to risk
> having a real user id and password, even with really restricted privs,
> going out over ftp.



I had to do a similar setup once when i was in new york. we where dealing 
with advertising people, so you know they were rating pretty low in the 
inteli^H^H^H technology meter :^)

sadly the best solution we came up with was using pro-ftpd in a chroot'd 
environment having users authenticate off a db; then we and had a php coder 
write a web frontend for it (which was a fricking mess, but the $$$ people 
wanted that so we did it). they could also obviosly use an ftp client to 
login as well. having the users *not* have real accounts on the system made 
me feel a little better, and from what i hear it's working pretty solidy as 
well. From my research two years ago pro-ftpd seemed to be the best choice 
for doing DB authentication....although maybe vsftpd and others have that 
support now as well.
-p

-- 
~~o0OO0o~~
Pete Wright
www.nycbug.org <http://www.nycbug.org>
NYC's *BSD User Group
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.nycbug.org/pipermail/talk/attachments/20050822/334a8220/attachment.html

More information about the talk mailing list