Securing FTP
FTP, as we saw in Chapter 27, “Configuring an FTP Server”, is another cleartext service that has inherent password authentication, and therefore has the potential to be compromised by an attacker watching the wires. It's about as much of a risk to the system as Telnet is because it's used frequently by users to do things such as uploading Web pages, but it isn't used at predictable, regular intervals like POP3 or IMAP. This makes it a bit less risky than Telnet, but still worth securing.
Fortunately, secure FTP is just as easy to implement as SSH. If you've enabled SSH on your system (as we saw earlier), secure FTP is available; encrypted FTP sessions actually operate over the SSH channel, with the SSH client establishing a terminal ...
Get FreeBSD® Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
