On Thursday, Nov 6, 2003, at 15:59 US/Eastern, Chad wrote:
Could a viable solution for these scans be to just deny ftp access for admin? I know in our case we never have anyone using admin to ftp. I'm not sure how to deny ftp access for the admin account though.
I am relatively fortunate in this regard.On our Qube, I simply turned off FTP (and, needless to say, block the port in ipchains.) There isn't a good business reason for us to have it open.
On our web server, there are no paying customers, just us. So we only use sftp, and again, the port is blocked in iptables. The very few people who need access to the box get my coaching in how to use sftp. Reading this list for two years has helped me develop some healthy paranoia.
Then there is the ftp server, which is an old P233 built for the purpose (so we could turn off the service on the Qube)... and it doesn't have an account named "admin." :-) (I need to rebuild that box soon anyway, with all the stuff I've learned since I first built it. But the uptime is 455 days, and I'm having a hard time convincing myself to stop it!)
pjm
Attachment:
PGP.sig
Description: This is a digitally signed message part