On Mon, Mar 2, 2015 at 5:51 PM, Eero Volotinen <eero.volotinen@xxxxxx>
wrote:
> 2015-03-03 0:43 GMT+02:00 Tim Dunphy <bluethundr@xxxxxxxxx>:
>
> > >
> > > errr, I meant, sftp, not rscp
> >
> >
> > Heh.. yeah. But the client isn't gonna go for that. LOL. Any way to allow
> > regular ol' FTP using SELinux? Or does that just defeat the purpose of
> > having a secure SELlinux server entirely?
> >
>
> FTP is not safe as it does not encrypt username(s) and password(s) or
> traffic during transfer.
>
I'd choose SSH for my own users.
And for customers if proper steps are taken to prevent any interactive
shells (it's even dicier with shared hosting).
>
> RHEL/Centos provides SELinux booleans and settings at least for vsftpd
> (very secure ftpd). Please use it, if possible.
>
Use FTPS protocol?
http://wiki.vpslink.com/Configuring_vsftpd_for_secure_connections_(TLS/SSL/SFTP)
--
---~~.~~---
Mike
// SilverTip257 //
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
