programming4us
           
 
 
Windows Server

Windows Server 2008 : Configuring FTP (part 10) - Configuring FTP SSL Settings

- Free product key for windows 10
- Free Product Key for Microsoft office 365
- Malwarebytes Premium 3.7.1 Serial Keys (LifeTime) 2019
12/17/2010 5:47:31 PM

Configuring FTP Network Security

FTP 7 provides numerous methods for ensuring that only authorized users can access an FTP site. In this section, you’ll learn about using SSL, firewall settings, and IP address restrictions to control access to FTP sites.

Configuring FTP SSL Settings

By default, all control channel and data channel communications between an FTP server and client are sent in clear text. This is a serious security issue, especially when providing FTP access over the Internet. For example, if packets are intercepted during the authentication process, username and password information can be collected and used to access the site.

Administrators can encrypt communications between an FTP 7 server and an FTP client by using the FTP over SSL (commonly referred to as FTP/S or FTPS) standard. To modify these settings, select the appropriate FTP site in IIS Manager and double-click the FTP SSL Settings feature. (See Figure 24.)

Figure 24. Configuring FTP SSL settings, using IIS Manager

The first setting enables you to specify which SSL certificate will be used by the FTP site. The SSL Policy section provides three options. Allow SSL Connections specifies that users may use SSL connections, but they can also connect to the server using an unencrypted connection. Require SSL Connections forces all users to use SSL and prevents unencrypted connections, and the Custom option enables you to specify different rules for the Control Channel and Data Channel. (See Figure 25.) You can use these options to minimize the performance overhead of implementing encryption. For example, by requiring encryption only for credentials, you can prevent usernames and passwords from being sent in clear text and still allow other control commands and data transfer to occur without encryption.

Figure 25. Configuring an advanced SSL policy for an FTP site

By default, the FTP SSL functionality will use a 40-bit encryption key strength. This reduces the CPU performance overhead while still maintaining adequate security for most scenarios. You can enable the Use 128-Bit Encryption For SSL Connections option to increase the strength of the encryption (at the expense of performance).

Note: FTP security standards

The Secure Shell (SSH) standard can also be used to secure FTP communications. The combination of these technologies is sometimes referred to as Secure FTP or SFTP. The use of SSH-based security is not supported in Windows Server 2008 and FTP 7, but you might see this option in other FTP server software or in FTP client connection options.

Users typically will configure their SSL settings in their FTP client software. When they attempt to create a new connection, they will see a message that enables them to view and accept the SSL certificate that is installed for the FTP server.
Other -----------------
- Windows Server 2008 : Controlling Access to Web Services (part 10) - Configuring .NET Trust Levels
- Windows Server 2008 : Controlling Access to Web Services (part 9) - Configuring IP Address and Domain Restrictions
- Windows Server 2008 : Controlling Access to Web Services (part 8)
- Windows Server 2008 : Controlling Access to Web Services (part 7)
- Windows Server 2008 : Controlling Access to Web Services (part 6) - Configuring Server Certificates
- Windows Server 2008 : Controlling Access to Web Services (part 5) - Managing URL Authorization Rules
- Windows Server 2008 : Controlling Access to Web Services (part 4) - Configuring Authentication Settings
- Windows Server 2008 : Controlling Access to Web Services (part 3)
- Windows Server 2008 : Controlling Access to Web Services (part 2)
- Windows Server 2008 : Controlling Access to Web Services (part 1) - Understanding Anonymous Authentication
- Windows Server 2008 : Configuring IIS Security (part 9)
- Windows Server 2008 : Configuring IIS Security (part 8) - Adding Handler Mappings
- Windows Server 2008 : Configuring IIS Security (part 7)
- Windows Server 2008 : Configuring IIS Security (part 6) - Understanding Handler Mappings
- Windows Server 2008 : Configuring IIS Security (part 5) - Connecting to a Remote Server Using IIS Manager
- Windows Server 2008 : Configuring IIS Security (part 4) - Configuring Feature Delegation
- Windows Server 2008 : Configuring IIS Security (part 3)
- Windows Server 2008 : Configuring IIS Security (part 2)
- Windows Server 2008 : Configuring IIS Security (part 1)
- Windows Server 2008 Server Core : Performing Server Updates
 
 
 
Top 10
 
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 2) - Wireframes,Legends
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 1) - Swimlanes
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Formatting and sizing lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Adding shapes to lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Sizing containers
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 3) - The Other Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 2) - The Data Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 1) - The Format Properties of a Control
- Microsoft Access 2010 : Form Properties and Why Should You Use Them - Working with the Properties Window
- Microsoft Visio 2013 : Using the Organization Chart Wizard with new data
- First look: Apple Watch

- 3 Tips for Maintaining Your Cell Phone Battery (part 1)

- 3 Tips for Maintaining Your Cell Phone Battery (part 2)
programming4us programming4us