ftp slow w/ proftpd# Samba fast
Alan Cox
alan at lxorguk.ukuu.org.uk
Sat Aug 4 23:38:10 UTC 2007
> >You can make vsftpd do a lot of things, and as it was written for
> >security first its extremely well designed.
>
> It does, however, allow unlimited password cracking attempts, while Proftpd
> can be configured to prevent, with the help of some iptables rules.
> (Ignore what that dolt Excalibur Xcalibur will say in response -- PEBKAC.)
It does. Although it supports tcp_wrappers so you can still do this but
not so prettily.
The usual vsftpd configuration is to set it to anonymous only, which
will provide weeks of pointless amusement to anyone trying to crack
passwords however.
Given ftp sends passwords in plain text its not usually a good idea to
allow non anonymous access except when you can force SSL for non
anonymous users anyway
Alan
More information about the fedora-list
mailing list