Presentation is loading. Please wait.

Presentation is loading. Please wait.

FTP File Transfer Protocol. Computer Center, CS, NCTU 2 FTP  FTP File Transfer Protocol Used to transfer data from one computer to another over the internet.

Published byGriselda Moore Modified over 8 years ago

Similar presentations

Presentation on theme: "FTP File Transfer Protocol. Computer Center, CS, NCTU 2 FTP  FTP File Transfer Protocol Used to transfer data from one computer to another over the internet."— Presentation transcript:

1 FTP File Transfer Protocol

2 Computer Center, CS, NCTU 2 FTP  FTP File Transfer Protocol Used to transfer data from one computer to another over the internet. Client-Server Architecture. Separated control/data connections. Modes:  Active Mode, Passive Mode Request For Comments (RFCs):  RFC 959 – File Transfer Protocol  RFC 2228 – FTP Security Extensions  RFC 2428 – FTP Extensions for IPv6 and NATs  RFC 2640 – UTF-8 support for file name  RFC 2324 – Hyper Text Coffee Pot Control Protocol

3 Computer Center, CS, NCTU 3 FTP - Security  Security concern As we seen, FTP connections (both command and data) are transmitted in clear text. What if somebody sniffing the network?  We need encryption.  Solutions FTP over SSH  So-called secure-FTP(sftp).  Both commands and data are encrypted while transmitting.  One connection, but poor performance. FTP over TLS  Only commands are encrypted while transmitting.  Better performance.

4 Computer Center, CS, NCTU 4 FTP - Pure-FTPd (1)  Introduction A small, easy to set up, fast and secure FTP server Support chroot Restrictions on clients, and system-wide. Verbose logging with syslog Anonymous FTP with more restrictions Virtual Users, and Unix authentication FXP (File eXchange Protocol) FTP over TLS UTF-8 support for filenames

5 Computer Center, CS, NCTU 5 FTP - Pure-FTPd (2)  Installation Ports: /usr/ports/ftp/pure-ftpd Options

6 Computer Center, CS, NCTU 6 FTP - Pure-FTPd (3) Other options WITH_CERTFILE for TLS  Default: /etc/ssl/private/pure-ftpd.pem WITH_LANG  Change the language of output messages  Startup: Add pureftpd_enable=“YES” in /etc/rc.conf

7 Computer Center, CS, NCTU 7 FTP - Pure-FTPd Configurations(1)  Configurations: File: /usr/local/etc/pure-ftpd.conf Documents  Configuration sample: /usr/local/etc/pure-ftpd.conf.sample –All options are explained clearly in this file.  Other documents –See /usr/local/share/doc/pure-ftpd/*

8 Computer Center, CS, NCTU 8 FTP - Pure-FTPd Configurations(2) # Cage in every user in his home directory ChrootEveryoneyes # If the previous option is set to "no", members of the following group # won't be caged. Others will be. If you don't want chroot()ing anyone, # just comment out ChrootEveryone and TrustedGID. TrustedGID0 # PureDB user database (see README.Virtual-Users) PureDB/usr/local/ etc /pureftpd.pdb # If you want simple Unix (/etc/passwd) authentication, uncomment this UnixAuthenticationyes # Port range for passive connections replies. - for firewalling. PassivePortRange30000 50000 # This option can accept three values : # 0 : disable SSL/TLS encryption layer (default). # 1 : accept both traditional and encrypted sessions. # 2 : refuse connections that don't use SSL/TLS security mechanisms, # including anonymous sessions. # Do _not_ uncomment this blindly. Be sure that : # 1) Your server has been compiled with SSL/TLS support (--with-tls), # 2) A valid certificate is in place, # 3) Only compatible clients will log in. TLS 2 # UTF-8 support for file names (RFC 2640) # Define charset of the server filesystem and optionnally the default charset # for remote clients if they don't use UTF-8. # Works only if pure-ftpd has been compiled with --with-rfc2640 # FileSystemCharset UTF-8 # ClientCharset UTF-8

9 Computer Center, CS, NCTU 9 FTP - Pure-FTPd Problem Shooting  Logs Location In default, syslogd keeps ftp logs in /var/log/xferlog  Most frequent problems pure-ftpd: (?@?) [ERROR] Unable to find the 'ftp' account  It’s ok, but you may need it for Virtual FTP Account. pure-ftpd: (?@?) [ERROR] Sorry, but that file doesn't exist: [/etc/ssl/private/pure-ftpd.pem]  If you set TLS = 2, then this file is needed. How to generate a pure-ftpd.pem?  See README.TLS

10 Computer Center, CS, NCTU 10 FTP - Pure-FTPd Tools  pure-*  pure-ftpwho List info of users who are currently connecting to the FTP server.  pure-pw Manage Virtual Users in PureDB format pure-pw(8) See README.Virtual-Users

11 Computer Center, CS, NCTU 11 FTP - More Tools  ftp/pureadmin Management utility for the PureFTPd  ftp/lftp Shell-like command line ftp client Support TLS  ftp/wget, ftp/curl Retrieve files from the Net via HTTP(S) and FTP  ftp/mget Multithreaded commandline web-download manager  FileZilla A graphical cross-platform FTP client Support TLS

Download ppt "FTP File Transfer Protocol. Computer Center, CS, NCTU 2 FTP  FTP File Transfer Protocol Used to transfer data from one computer to another over the internet."

Similar presentations

Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.

Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.
Chapter 17: WEB COMPONENTS

Chapter 17: WEB COMPONENTS
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Module 5: Configuring Access to Internal Resources.

Module 5: Configuring Access to Internal Resources.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Homework 5b: Samba. Computer Center, CS, NCTU 2 Network-based File Sharing (1)  NFS (UNIX-based) mountd is responsible for mount request nfsd and nfsiod.

Homework 5b: Samba. Computer Center, CS, NCTU 2 Network-based File Sharing (1)  NFS (UNIX-based) mountd is responsible for mount request nfsd and nfsiod.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
FTP File Transfer Protocol. Computer Center, CS, NCTU 2 FTP  FTP File Transfer Protocol Used to transfer data from one computer to another over the internet.

FTP File Transfer Protocol. Computer Center, CS, NCTU 2 FTP  FTP File Transfer Protocol Used to transfer data from one computer to another over the internet.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
Hands-On Microsoft Windows Server 2003 Administration Chapter 7 Administering Web Resources in Windows Server 2003.

Hands-On Microsoft Windows Server 2003 Administration Chapter 7 Administering Web Resources in Windows Server 2003.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
Linux+ Guide to Linux Certification, Second Edition

Linux+ Guide to Linux Certification, Second Edition
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
NOC TOOLS syslog AfNOG 2009 - Cairo, SI-E, 2 of 5 Sunday Folayan.

NOC TOOLS syslog AfNOG Cairo, SI-E, 2 of 5 Sunday Folayan.
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company www.jblearning.com All rights reserved. Security Strategies in Linux Platforms and.

© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company All rights reserved. Security Strategies in Linux Platforms and.
Introduction 1-1 Chapter 2 FTP & Email Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 IC322 Fall.

Introduction 1-1 Chapter 2 FTP & Computer Networking: A Top Down Approach 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 IC322 Fall.
Telnet/SSH: Connecting to Hosts Internet Technology1.

Telnet/SSH: Connecting to Hosts Internet Technology1.
FTP File Transfer Protocol. Introduction transfer file to/from remote host client/server model  client: side that initiates transfer (either to/from.

FTP File Transfer Protocol. Introduction transfer file to/from remote host client/server model  client: side that initiates transfer (either to/from.
2440: 141 Web Site Administration Remote Web Server Access Tools Instructor: Enoch E. Damson.

2440: 141 Web Site Administration Remote Web Server Access Tools Instructor: Enoch E. Damson.

Similar presentations

Ads by Google