Unix- TCP/IP Security (5)

• Anonymous FTP - File Transfer Protocol

  • allows restricted access to anyone on the network to send and receive files (anonymous/e-mail address)
  • chroot environment: /etc/spool/ftp --> /
    • /etc/spool/ftp/bin - requires ‘ls’
    • /etc/spool/ftp/etc - requires ‘passwd’ and ‘group’
    • /etc/spool/ftp/pub - files (drwxrwxrwt)
  • secret directory: d--x--x--x

• Trivial TFTP - if do not need, disable it

  • should run as nobody restricted to /tftpboot
  • test it !

Previous slide

Next slide

Back to first slide

View graphic version