DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 3rd August 2009
milo974 milo974 is offline
Fdisk Soldier
 
Join Date: Jul 2008
Posts: 58
Thanked 0 Times in 0 Posts
Smile how to secure my ftp?

Hello,

@t work we have :

|Internet|--openbsd4.5---|ftp-server-synology(NAS)|

I use ftp-proxy and anchor in my pf.conf for outdoor use (from home)
And it works very fine.

Now, i want to secure it. Is it possible to implement ftp over ssh in this case?
knowing that the ftp server is a NAS.

Thank's.
Reply With Quote
  #2   (View Single Post)  
Old 3rd August 2009
BSDfan666 BSDfan666 is offline
Real Name: N/A, this is the interweb.
Helpful companion
 
Join Date: Apr 2008
Location: Ontario, Canada
Posts: 2,223
Thanked 193 Times in 184 Posts
Default

I'm not sure what you mean be "ftp over ssh", or by "securing it".

There are 2 common types of "secure" file transfer protocols that by coincidence share a similar name, FTPS and SFTP.. FTPS is an enhancement to the original FTP protocol, adding TLS/SSL encryption.

For FTPS support, the FTP daemon on this "NAS" device must support it.. otherwise you'll need to use something else.

SFTP is a file transfer protocol that utilizes the SSH protocol for encryption and possibly compression, it is NOT related to the FTP protocol in any way.

Hopefully you can clarify some things.
Reply With Quote
  #3   (View Single Post)  
Old 3rd August 2009
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 2,873
Thanked 190 Times in 160 Posts
Default

Quote:
Originally Posted by milo974 View Post
...the ftp server is a NAS.
Your choices are limited by whatever functionality is implemented by the server. It appears you need to spend time studying whatever documentation is available from your NAS' vendor.
Reply With Quote
  #4   (View Single Post)  
Old 4th August 2009
Carpetsmoker's Avatar
Carpetsmoker Carpetsmoker is offline
Real Name: Martin
Old man from scene 24
 
Join Date: Apr 2008
Location: Eindhoven, Netherlands
Posts: 2,064
Thanked 198 Times in 156 Posts
Default

Most Synology NAS stations are Linux boxes, you can enable sshd on the box in the menu and log in with SSH (No ``hacking'' required as with some other brands).
This allows you to inspect & tweak the exact configuration better than you can than through the web interface.
__________________
UNIX was not designed to stop you from doing stupid things, because that would also stop you from doing clever things.
Reply With Quote
Reply

Tags
sftp nas

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Is this secure? Ungenious OpenBSD Security 4 30th November 2008 02:27 AM
I would like to secure a system kungfujesus OpenBSD Security 4 28th September 2008 04:30 PM
secure ssh with public key milo974 OpenBSD Security 11 9th July 2008 04:52 PM
obsd 4.3 secure ssh use milo974 OpenBSD Security 9 3rd July 2008 11:23 AM
How secure are apps that using RPC portmapping? aleunix OpenBSD Security 4 9th June 2008 05:53 PM


All times are GMT. The time now is 05:20 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick