Re: Anyway to force FTPS only for FTP
I'm quite late to this thread, but why not use SSH?
FTP clients like Filezilla support it, so it's a free option to roll out.
That would force using a secure protocol and could use the same security
cert used for FTPS.
You *can* restrict via firewall, but it would involve giving those few users
static IP addresses or putting them into their own subnet and restricting
FTP access to those addresses/ subnets..
You would set up a rule in the firewall to allow FTP from only the above,
and only open the FTPS port to the remaing users
"Andrew Knoke" <knoke@uwosh.edu> wrote in message
news:8uNEl.1888$s8.35@kovat.provo.novell.com...
> Andrew Knoke wrote:
>> Is their anyway to force my users to use FTPS vs FTP. I do not see this
>> as an option in the restrict.txt. This server is behind a firewall but I
>> do not see how I could restrict this via the firewall. Anyone have any
>> idea if this is possible.
>
> I think I have figured out this question. Although I now have another
> question. I can force secure connections via the ftpserv.cfg file.
>
> My new question is I would like force all of my users to connect using
> FTPS except a few accounts which are mainly scanners that AFAIK will not
> do FTPS. Is it possible to make exceptions like this based on account or
> IP or do I actually need to setup another FTP server.
>
> Thanks
> Andy
|
Threaded Mode
