Author Topic: Several Questions  (Read 1171 times)

fuckoffmicrosoft

  • Member
  • **
  • Posts: 73
  • Kudos: 0
    • http://jeujeu.ath.cx
Several Questions
« on: 27 September 2002, 00:37 »
Ive read about these questions before posting but to no avail

1. How Do I keep A person From seeing all the folders when they log into account via FTP

2. Whats a good free virus scanner

3. ssl exactly what is it and is it a must for starting out?

4. Should I trust the firewall that comes with linux or get another one?

5. I have a 768/768 connection Vdsl whats the maximum number of connections i can have? <--- just approx. figure

Thanx guys

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Several Questions
« Reply #1 on: 27 September 2002, 01:00 »
there is NO "virus" for Linux. therefore there is no "virus" scanner.
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

fuckoffmicrosoft

  • Member
  • **
  • Posts: 73
  • Kudos: 0
    • http://jeujeu.ath.cx
Several Questions
« Reply #2 on: 27 September 2002, 01:08 »
quote:
Originally posted by The Master of Reality / Bob:
there is NO "virus" for Linux. therefore there is no "virus" scanner.


I need for server to make sure no one upload virus and pass it on

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Several Questions
« Reply #3 on: 27 September 2002, 01:11 »
quote:
Originally posted by fuckoffmicrosoft:
Ive read about these questions before posting but to no avail

1. How Do I keep A person From seeing all the folders when they log into account via FTP

2. Whats a good free virus scanner

3. ssl exactly what is it and is it a must for starting out?

4. Should I trust the firewall that comes with linux or get another one?

5. I have a 768/768 connection Vdsl whats the maximum number of connections i can have? <--- just approx. figure

Thanx guys


1. why do you want FTP? FTP is a probable insecure protocol for sharing files. There is serious risks involved with running FTP. If you are running it only for your network than i suggest using SCP to share file between computer or SFTP if you really want an ftp server. They are SSH tools for secure ftp and cp (copying) across networks or internet.

3. SSL is secure socket layer. It imploys 3 level protection for information going across the internet through a web browser. SSL is a three-tiered method that employs RSA and DES athentication, as well as additional MD5 integretity checking.You must install SSL in your webserver if you want to use it on yer website. At conenction time of a client to the webserver they define and exchange a secret key which is used to encrypt the traffik between them. It is definatley not a must if you are starting a webserver unless you plan to be taking confidential information from people (such as credit card numbers).

4. There is a lot of firewalls you can dl and isntall. I wrote my own firewall using ipchains (i also used iptables to create one). Do "man iptables" and "man ipchains". Also Search for a thread in the linux forum by the name of "Simple ipchains question".

5. are you talking about the ultimate number of connections between it and anything? Or between the internet and a webserver??
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Several Questions
« Reply #4 on: 27 September 2002, 01:14 »
quote:
Originally posted by fuckoffmicrosoft:


I need for server to make sure no one upload virus and pass it on


i recomend against running an anonymous FTP server on the internet. It is also more likely that script kiddies will store lots of warez on your server than viru and trojans.
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

fuckoffmicrosoft

  • Member
  • **
  • Posts: 73
  • Kudos: 0
    • http://jeujeu.ath.cx
Several Questions
« Reply #5 on: 27 September 2002, 01:19 »
ftp is for accounts only no anoynomous ftp im starting free hosting to begin with

5. im talking on like webserver basis

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Several Questions
« Reply #6 on: 27 September 2002, 01:23 »
5. Apache's default is usually good (i'm assuming you use apache). I run my webserver on a 166MHz with 32MB of RAM and apaches default is just fine for it.

If you want an account based ftp than i recomend SFTP which uses ssh technology to encrypt the data flow. FTP account passwords are sent in plaintext and therefore can be easily sniffed. SFTP can be encrypted in many different encryption algorithims such as IDEA, DES, Blowfish, two-fish, RSA and a couple others.
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

fuckoffmicrosoft

  • Member
  • **
  • Posts: 73
  • Kudos: 0
    • http://jeujeu.ath.cx
Several Questions
« Reply #7 on: 27 September 2002, 01:30 »
5. my setu
900 mz
448 meg ram
60 gig drive
768/768
using linux

so this is good setup, no?

[ September 26, 2002: Message edited by: fuckoffmicrosoft ]


Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Several Questions
« Reply #8 on: 27 September 2002, 01:43 »
thats an excellant webserver.
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

fuckoffmicrosoft

  • Member
  • **
  • Posts: 73
  • Kudos: 0
    • http://jeujeu.ath.cx
Several Questions
« Reply #9 on: 27 September 2002, 02:15 »
thank you for answers but how do i keep person in a certain directory?

Ice-9

  • Member
  • **
  • Posts: 322
  • Kudos: 0
    • http://users.pandora.be/Ice9
Several Questions
« Reply #10 on: 27 September 2002, 02:41 »
I never set up an ftp server in Linux, but from what I remember setting up Bulletproof FTP server in Windows, I assume in lInux too you can assign one or more directories to a particular account.
the account then only has access to the dirs you assign to it.
He was sitting on a rock. He was barefoot. His feet were frosty with ice-nine .....

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Several Questions
« Reply #11 on: 27 September 2002, 03:19 »
ummmmmmm..... i think you must chroot the person into a certain directory. "man chroot" but it basically makes whatever directory you want be the users "root" directory, so they cannot go any further down than where you chroot them. you might create a directory like /var/www/usrs/bob and chroot bob into that directory.
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'

fuckoffmicrosoft

  • Member
  • **
  • Posts: 73
  • Kudos: 0
    • http://jeujeu.ath.cx
Several Questions
« Reply #12 on: 27 September 2002, 03:52 »
quote:
Originally posted by The Master of Reality / Bob:
ummmmmmm..... i think you must chroot the person into a certain directory. "man chroot" but it basically makes whatever directory you want be the users "root" directory, so they cannot go any further down than where you chroot them. you might create a directory like /var/www/usrs/bob and chroot bob into that directory.


  :confused:  do i chroot the dir or the user or both. and the command would be "man chroot blah blah"

fuckoffmicrosoft

  • Member
  • **
  • Posts: 73
  • Kudos: 0
    • http://jeujeu.ath.cx
Several Questions
« Reply #13 on: 27 September 2002, 04:09 »
heres what i got and it did nothing

> dir
bin   dev  home    lib   opt   root  tmp  var
boot  etc  initrd  mnt   proc  sbin  usr
> cd /var/www/html
> man chroot insane
CHROOT(1)                      FSF                      CHROOT(1)

NNAAMMEE
       chroot  -  run  command  or interactive shell with special
       root directory

SSYYNNOOPPSSIISS
       cchhrroooott _N_E_W_R_O_O_T [_C_O_M_M_A_N_D...]
       cchhrroooott _O_P_T_I_O_N

DDEESSCCRRIIPPTTIIOONN
       Run COMMAND with root directory set to NEWROOT.

       ----hheellpp display this help and exit

       ----vveerrssiioonn
              output version information and exit

       If no command is  given,  run  ``${SHELL}  --ii''  (default:
       /bin/sh).

AAUUTTHHOORR
       Written by Roland McGrath.

RREEPPOORRTTIINNGG BBUUGGSS
       Report bugs to <[email protected]>.

CCOOPPYYRRIIGGHHTT
       Copyright

Master of Reality

  • VIP
  • Member
  • ***
  • Posts: 4,249
  • Kudos: 177
    • http://www.bobhub.tk
Several Questions
« Reply #14 on: 27 September 2002, 04:21 »
well... you may not want to use chroot.

The "man" command will show the manual page for whatever command you put after "man" so "man chroot" will show the manual page for chroot.

You dont want to chroot the directory though or you would have to move any executables that you want the user to run (such as "ls") you would have to put in the directory that is chrooted.

you might want to search google for documentation on FTP servers.
Disorder | Rating
Paranoid: Moderate
Schizoid: Moderate
Linux User #283518
'It takes more than a self-inflicted gunshot wound to the head to stop Bob'