<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:'times new roman', 'new york', times, serif;font-size:12pt"><div></div><div>Hi,</div><div><br></div><div>You can just use sshd in the server (probably you have this already running) so that communication is encrypted and regular Linux user accounts (you can use an email address as user name) with /home directories, no need to install/configure anything server-side. You just need to be careful with the directory permissions and umask.</div><div><br></div><div>The user can use any free sftp/scp client, like winscp.com for Windows etc. And you can delete the users & files with a cron job.</div><div><br></div><div>Some users are too used to ftp or don't want to try sftp, in that case just a regular ftp server (vsftp works well) with jailed users (this is one config pararmeter in vsftp) may be a "better" solution, knowing that
communication (including password) is not encrypted.</div><div> </div>---------------------<br>Fernando Duran<br><span><a target="_blank" href="http://www.fduran.com">http://www.fduran.com</a></span><div><br></div><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><br><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><font size="2" face="Tahoma"><hr size="1"><b><span style="font-weight: bold;">From:</span></b> Kiwi Ssennyonjo <kiwi@ssenn.com><br><b><span style="font-weight: bold;">To:</span></b> kwlug-disc@kwlug.org<br><b><span style="font-weight: bold;">Sent:</span></b> Fri, May 7, 2010 1:52:25 PM<br><b><span style="font-weight: bold;">Subject:</span></b> [kwlug-disc] More Secure FTP Server<br></font><br>Good afternoon to you all<div><br></div><div>I need advice and direction on FTP.</div><div>We have a client that is looking for a more secure ftp server with more automation. I am
not very versed with ftp.</div><div>We are looking for the following features</div>
<div>-Secure (SFTP, https, etc)</div><div>-automated authentication, preferably using the user's email address</div><div> -when a user logs in they are jailed</div><div>-files and the user are deleted after a set period, five days.</div>
<div><br></div><div>The serve is going to be on CentOS 5.3, LDAP is available to be used.</div><div>The organization has a sales and purchasing departments that send all sorts of confidential information to their clients. Clients CAN NOT, and SHOULD NOt see and another's information. IE When quoting and trying to get a price from ten vendors.</div>
<div><br></div><div>Thank you in advance<br clear="all"><br>-- <br>Kiwi Ssennyonjo<br><a rel="nofollow" target="_blank" href="http://www.ssenn.com">http://www.ssenn.com</a><br>m:519-744-3200<br>
</div>
</div></div><div style="position:fixed"></div>
</div><br></body></html>