|< Day Day Up >|| |
Although it might seem like a throwback to the days of Archie, Gopher, and Mosaic, File Transfer Protocol (FTP) is still occasionally useful as a quick and efficient way of sharing large files with external users. It contains no security worth using (passwords are sent in plaintext), so enable FTP on an as-needed basis, and disable it while not in use.
FTP in Windows Small Business Server 2003 is implemented as a component of Internet Information Services and is administered using the standard Internet Information Services consoles. Before you can use it, you must install it.
To install the FTP service, complete the following steps:
Click Add Or Remove Programs in Control Panel, and then click Add/ Remove Windows Components. This opens the Windows Components Wizard.
Select Application Server, click Details, select Internet Information Services (IIS), and then click Details again.
Select the File Transfer Protocol (FTP) Service check box, click OK twice, and then click Next to install the service. Click Finish when it’s done. Windows Small Business Server installs the FTP service and creates the default FTP site in the C:\Inetpub\FTProot directory.
|Security Alert|| |
Once FTP is installed, to allow external users to access FTP, you must rerun the Configure E-Mail and Internet Connection Wizard to open the firewall. If you have a non-UPnP external firewall in addition to Windows Small Business Server, make sure you open port 21 as well. Once you’re finished transferring files, close the port again to prevent hackers from attacking your server over this port.
Although Windows Small Business Server sets up FTP with no additional help, you will probably want to change some settings, such as the welcome messages and directory security. To do so, complete the following procedure:
Open the Server Management console, expand the Advanced Management container, expand Internet Information Services, and finally expand the SBSSRV (local computer) container (assuming your server is named SBSSRV). Then expand the FTP Sites container.
Right-click Default FTP Site and choose Properties from the shortcut menu. This displays the Default FTP Site Properties dialog box.
On the FTP Site tab, click the Current Sessions button to view currently connected users and optionally disconnect them.
Click the Security Accounts tab and select the Allow Only Anonymous Connections check box. This increases security by preventing users with valid accounts from sending their credentials in clear text over the Internet.
Click the Messages tab to type welcome messages that appear to visitors when they enter the site.
Click the Home Directory tab to specify where the FTP site should be stored.
Click the Directory Security tab to selectively block or enable access to certain IP addresses. This is useful for enabling the FTP site for a small number of users with known IP addresses. Click OK when you’re finished.
For maximum security, when you’re finished using the FTP site, temporarily disable it by right-clicking it and choosing Stop from the shortcut menu. If you don’t anticipate using it again, uninstall it using Add Or Remove Programs in Control Panel.
|< Day Day Up >|| |