[nycbug-talk] Anonymous ftp upload questions
nomadlogic at gmail.com
Mon Aug 22 11:33:13 EDT 2005
On 8/22/05, Marco Scoffier <marco at metm.org> wrote:
> Hello all,
> I have set up an ftp server to get people to upload large files (images,
> videos). I was debating how to do this for a while, and decided that
> because of the technical naiveté of the uploaders, anonymous ftp would
> be the way to go, I do have an http upload page but some large files are
> 750M+ and ftp at least does resume partial uploads.
> Anyway I setup vsftpd, to allow anonymous uploads and block all
> downloads (don't want the warez kiddies using the server as a drop off
> point). But I am getting quite a few obvious warez uploads of 1mbtest.ptf
> and space.asp which looks like a script to get the characteristics of
> the server, which won't work because there is no http access to the
> None of the uploads work, but I am kind of annoyed at these test uploads,
> but I'm thinking there is very little I can do about this. Any ideas?
> Anyone else have a similar set up? Would you set up a no privaledges
> account, rather than go anonymous, seems like more of a hassle to risk
> having a real user id and password, even with really restricted privs,
> going out over ftp.
I had to do a similar setup once when i was in new york. we where dealing
with advertising people, so you know they were rating pretty low in the
inteli^H^H^H technology meter :^)
sadly the best solution we came up with was using pro-ftpd in a chroot'd
environment having users authenticate off a db; then we and had a php coder
write a web frontend for it (which was a fricking mess, but the $$$ people
wanted that so we did it). they could also obviosly use an ftp client to
login as well. having the users *not* have real accounts on the system made
me feel a little better, and from what i hear it's working pretty solidy as
well. From my research two years ago pro-ftpd seemed to be the best choice
for doing DB authentication....although maybe vsftpd and others have that
support now as well.
NYC's *BSD User Group
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the talk