PCMech Forums - View Single Post

Statica · 01-09-2004, 03:32 PM

Hi Gamer:

I'll outline the steps for making up an FTP server. Mind you, these are outlines, at each step I would recommend that you do your best research to find out what works best for you - as well as how to work each step. There are adequate help files and primers on how to set up an FTP server for yourself. I am always wary of simply writing "load this program up and run it" because I believe that it is helpful for you to ultimately know what it is you are running, what are the implications - strengths and liabilities of what you are running. So here goes:

1) Check your ISP - Terms, Conditions and Acceptable Usage Policy if you are allowed to run a server or a service.. I cannot stress this enough. If yours is a personal internet service, some ISPs will frown upon the extra bandwidth going thru. However if all you are using is an FTP service to share a few fotoshop files, you might be ok. CHECK WITH THE ISP's WEBSITE. You do not want to get shut down, or worse billed an insane amount just because you did not read the terms of your ISP.
2) Working computer
You will need a fully working computer, which means you need a video card as well. A monitor is not necessary full time (you could conceivably borrow a monitor, boot up your server, then remove the monitor when you figure that all is well). The specs of your computer are plenty powerful (with the addition of a few parts of course, like video card? network card?)
3) Operating System
You will need a computer with a complete operating system. Mind you any operating system is fine, as long as it is capable of running on the hardware you have. For your specs, Win2k is fine or better yet Windows 98. Personally for the specs, I would go with a UNIX OS, but if you don't know too much about it and dont want to delve into it, Windows is just as adequate. (this checklist is written with windows in mind)
4) Internet Connection
Needless to say, but it is important nonetheless
5) FTP Server/Daemon
Any common operating system is foremost a client system, to convert it into a machine that will accept connections and serve out data you will need a specific program that will turn it into an FTP server. Fortunately, for windows there are a number of freeware FTP servers that will suit you just fine:
Here's a short list of some choices - http://www.tucows.com/ftpserver95_default.html
6) Download the FTP server program and read the documentation thoroughly! On how to set up your service.
8) Security considerations
Every program is different so I cannot tell you how to configure it specifically (unless you post back with help about a specific program), but here are a few things I'd recommend you do - check all the program options and help, and pretty much every ftp server program will let you do these things
(a) Disable anonymous login. This is VERY important, if all you need is a sharing system between your peers. Agree upon a username and password and allow only connections to that username. (The FTP username is set from your ftp server program, and has no bearing on any other login or pwd - like your computer or your ISP etc etc).
(b) I'd recommend changing the port #. FTP services by default run on port 21, it is recommended that you change the port number to anything else (and also tell your friend about the new port number).
(c) Be absolutely sure of the drives/folders that the server will give access to. Do not give access to core folders like say C:\Windows or something like that - I'd recommend not giving access to a drive, but just to a folder that you create.
9) Routing
Do you have a router? If so you will have to set up your router to accept and redirect FTP requests from the port# you selected to the specific computer behind the router. Check your router mfger's manual for information on how to do it. Or failing which, post back with information about your router.
10) The realization that you are openning a vulnerability. An FTP is a wonderful service if used properly, but be well aware that every such server that you run on your own connection, you are creating a new hole waiting to be exploited. It doesnt matter if you set a username or changed the port#, there are ways to exploit these things. Also be aware of the content that you are going to be sharing. You are of course, free to FTP any files you want, but be aware that the presence of these files on your computer automatically make you responsible for the legality of the contents.

01-09-2004, 03:32 PM	#4
Statica Premium Member Join Date: Jun 1999 Posts: 9,231	FTP Server checklist Hi Gamer: I'll outline the steps for making up an FTP server. Mind you, these are outlines, at each step I would recommend that you do your best research to find out what works best for you - as well as how to work each step. There are adequate help files and primers on how to set up an FTP server for yourself. I am always wary of simply writing "load this program up and run it" because I believe that it is helpful for you to ultimately know what it is you are running, what are the implications - strengths and liabilities of what you are running. So here goes: 1) Check your ISP - Terms, Conditions and Acceptable Usage Policy if you are allowed to run a server or a service.. I cannot stress this enough. If yours is a personal internet service, some ISPs will frown upon the extra bandwidth going thru. However if all you are using is an FTP service to share a few fotoshop files, you might be ok. CHECK WITH THE ISP's WEBSITE. You do not want to get shut down, or worse billed an insane amount just because you did not read the terms of your ISP. 2) Working computer You will need a fully working computer, which means you need a video card as well. A monitor is not necessary full time (you could conceivably borrow a monitor, boot up your server, then remove the monitor when you figure that all is well). The specs of your computer are plenty powerful (with the addition of a few parts of course, like video card? network card?) 3) Operating System You will need a computer with a complete operating system. Mind you any operating system is fine, as long as it is capable of running on the hardware you have. For your specs, Win2k is fine or better yet Windows 98. Personally for the specs, I would go with a UNIX OS, but if you don't know too much about it and dont want to delve into it, Windows is just as adequate. (this checklist is written with windows in mind) 4) Internet Connection Needless to say, but it is important nonetheless 5) FTP Server/Daemon Any common operating system is foremost a client system, to convert it into a machine that will accept connections and serve out data you will need a specific program that will turn it into an FTP server. Fortunately, for windows there are a number of freeware FTP servers that will suit you just fine: Here's a short list of some choices - http://www.tucows.com/ftpserver95_default.html 6) Download the FTP server program and read the documentation thoroughly! On how to set up your service. 8) Security considerations Every program is different so I cannot tell you how to configure it specifically (unless you post back with help about a specific program), but here are a few things I'd recommend you do - check all the program options and help, and pretty much every ftp server program will let you do these things (a) Disable anonymous login. This is VERY important, if all you need is a sharing system between your peers. Agree upon a username and password and allow only connections to that username. (The FTP username is set from your ftp server program, and has no bearing on any other login or pwd - like your computer or your ISP etc etc). (b) I'd recommend changing the port #. FTP services by default run on port 21, it is recommended that you change the port number to anything else (and also tell your friend about the new port number). (c) Be absolutely sure of the drives/folders that the server will give access to. Do not give access to core folders like say C:\Windows or something like that - I'd recommend not giving access to a drive, but just to a folder that you create. 9) Routing Do you have a router? If so you will have to set up your router to accept and redirect FTP requests from the port# you selected to the specific computer behind the router. Check your router mfger's manual for information on how to do it. Or failing which, post back with information about your router. 10) The realization that you are openning a vulnerability. An FTP is a wonderful service if used properly, but be well aware that every such server that you run on your own connection, you are creating a new hole waiting to be exploited. It doesnt matter if you set a username or changed the port#, there are ways to exploit these things. Also be aware of the content that you are going to be sharing. You are of course, free to FTP any files you want, but be aware that the presence of these files on your computer automatically make you responsible for the legality of the contents.