-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 2016-09-14 21:14, Vojtěch Zeisek wrote:
Dne středa 14. září 2016 21:00:43 CEST, Carlos E. R. napsal(a):
On 2016-09-14 19:40, Vojtěch Zeisek wrote:
Dne středa 14. září 2016 18:17:38 CEST, Mikhail Ramendik napsal(a):
I am running Leap and need to set up an FTP server for the home network. Nothing fancy, a fixed username/password giving read/write access to a directory. Using my own main user sounds a bit insecure, though?
It depends... Is the computer Your main working station? Is it behind reliable firewall? Can You trust Your users?
I understand that ftp transmits the login/password in the clear, so using it for real system users across internet can not be safe. Inside a local network, it is different.
Yes. It relies on the quality of firewall. Anyway, I prefer SSH/SFTP. Same level of complicatedness and much better set of functions and security. YaST also allows FTPS - old FTP with extra SSL security. Just few clicks more.
Sorry, but what can a firewall do about a password transmitted in the clear? :-?
What can be tricky for ftp is the firewall.
Setting it via YaST is simple. Just allow FTP service (port 21) for selected network interface. Another case is the home firewall. It must allow port 21 for FTP. It should be somewhere in the device's settings.
Unfortunately, ftp uses two ports, and the second one varies. And depending on the choice of passive/active ftp, that port has to be opened in the server or the client. sftp/scp is far easier in that respect, using a single port, the one for ssh. But it can only use system users, AFAIK. - -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" (Minas Tirith)) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iF4EAREIAAYFAlfZ5DwACgkQja8UbcUWM1zBMQD9EJNm1w8jGQHLzemVdcwPvJzM ji47afjWzduSOK4wxKAA/jH+VKx+sTknqSqD+wAaFmcsfNDHjiIiydCsXXVWEdf/ =Pyub -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org