Help hosting SFTP server on WS2k3

By +Chsoriano
in Smart Home, Network & Security

 Share

Recommended Posts

Veteran

+Chsoriano Subscriber²

Posted
  • Subscriber²
Posted

I'm trying to setup an SFTP server on a WS2K3 box... never setup an SFTP server but after some looking, I found a program called FreeFTPd (trying to do this at no cost). I managed to get accounts setup (using both NT authentication and users setup in FreeFTPd) and it is working...

But it only works if an administrator account is logged into the server and if the FreeFTPd application is running. I installed it as a service but it's not working correctly. I can't leave a user logged on indefinitely because the domain automatically logs users off if inactive.

Any recommendations or advice? Is there a better way to do this?

Any help is greatly appreciated.

Link to comment
https://www.neowin.net/forum/topic/816290-help-hosting-sftp-server-on-ws2k3/
Share on other sites
Grand Master

+BudMan MVC

Posted
  • MVC
Posted

well for starters I think you mean freeSFTPd not the freeFTPd if your wanting to use sftp.

Did you set it up as a system service when you installed it? Im not familiar with that specific product - what I would suggest if you want sftp run it on a linux box. Or run a linux virtual machine on your server -- this could be done free with say vmware server. This currently how I do it.

Veteran

+Chsoriano Subscriber²

Posted
  • Author
  • Subscriber²
Posted

yeah, I've considered setting up a linux vm to host the sftp server, I am going to continue to mess around with it... I still have to secure the hardware for it, I'd rather have it on a physical box.

And yeah, it is installed as a system service, it appears in the service list, but I'm not sure if I have to configure it at all... now that I think about it I'll go check.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

I'll give it a play when I get home on my 2k8 box, but the linux box be it physical or virtual would be my choice for hosting sftp.

Also its a given as soon as you fire up a sftp server your going to get hit with brute force attempts. I would suggest only allowing public key auth vs passwords.

or at min run a script to block ips that try to bruteforce you, or both ;) Not sure how you would do that with these ports to windows for ssh/sftp

Grand Master

offroadaaron

Posted
Posted
Also its a given as soon as you fire up a sftp server your going to get hit with brute force attempts. I would suggest only allowing public key auth vs passwords.

or at min run a script to block ips that try to bruteforce you, or both ;) Not sure how you would do that with these ports to windows for ssh/sftp

Or change the ports from the standard ports.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Changing ports is not security - "Obscurity is not Security"

You can do that if you want -- but it does not secure anything, and can run into problems trying to connect from a location that blocks non standard ports.. Its common to block nonstandard outbound ports.

I would suggest you correctly secure your connection vs trying to just hide it. If you want to change the port as well, thats your choice but keep in mind that is not security method.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Microsoft about to radically change how often your Edge browser updates

      By leonsk29 · Posted

      Wow, spoken like a true blind hater, you don't even provide arguments. Please, go check my comment above to @seacaptain and you'll find out why what you say doesn't make sense in this context...
    • Microsoft about to radically change how often your Edge browser updates

      By grunger106 · Posted

      Get used to this, with AI tooling now uncovering new vulns and getting them exploitable far faster than has ever been possible before software is going to need to be updated far more frequently. Back in the day it may take reseachers weeks or months to do what AI can now do in hours. Once its a threat is discovered it's weaponsized far more quickly, meaning you simply can't be waiting 2, 3, 4 weeks to deploy a patch, it needs to be patched immediately. Going to be interesting handling this in the enterprise space where traditionally patching has been steady, but very staged (and rightly so up until now), that is going to have to change.
    • Microsoft about to radically change how often your Edge browser updates

      By leonsk29 · Posted

      You don't need to "close all browser sessions constantly" or wait for updates to install. The updates download in the background while you use the browser, without interrupting you, they install automatically the next time you launch the app. And they install very fast (depending on your storage speeds, of course), you have to wait at most 2-3 extra seconds, if any. Seems like you haven't used Edge in a loooooooong time...
    • Segra 1.6.0

      By Copernic · Posted

      Segra 1.6.0 by Razvan Serea Segra is a free, open-source OBS-powered game recorder offering fast gameplay capture, instant clips, AI highlights, deep game integration, and seamless uploads—perfect for gamers, streamers, and content creators. Lightweight, fast, zero bloat. Segra key features: Automatic Game Recording: Begin capturing gameplay the moment your game launches, with zero manual setup. Instant Clipping: Save important moments instantly using a customizable hotkey—perfect for highlights, montages, or quick shares. Segra AI Highlights: Let Segra automatically detect kills, assists, deaths, and key events to generate polished highlight reels without manual editing. Gameplay Uploads: Upload recordings and clips directly to Segra.tv for fast sharing and cloud access. Deep Game Integration: Enjoy advanced game-data tracking across hundreds of supported titles, enabling smart highlight generation and stat-informed clipping. High-Performance Capture: Record up to 4K at 144 FPS using OBS-powered technology with minimal performance impact, supporting NVENC, AMD VCE, and custom quality controls. Segra Editor: Edit recordings easily with timeline controls, segment management, and event-based navigation to build the perfect clip. Customization Options: Adjust hotkeys, output formats, storage paths, codecs, capture quality, and performance settings for a tailored recording experience. Segra 1.6.0 changelog: Recording: Added HDR support. Grand Theft Auto: Added game integration for deaths (FiveM and RAGE MP supported). Highlights: Added customizable padding for highlights. Replay Buffer: Added a shockwave visual effect when a replay buffer clip is saved. Audio: Increased the maximum sound effects volume from 100% to 200%. Hotkeys: Fixed hotkeys not triggering while unrelated keys were held. Installer: Added code signing to verify publisher identity, branded the installer, and reduced OS security warnings. OBS: Updated the supported OBS version to 32.1.2. Download: Segra 1.6.0 | 74.4 MB (Open Source) View: Segra Homepage | Github | Screenshot Get alerted to all of our Software updates on Twitter at @NeowinSoftware
    • The official Funny Pictures thread

      By +primortal · Posted

  • Recent Achievements

    • One Month Later
      Clizby earned a badge
      One Month Later
    • One Month Later
      Timaximus earned a badge
      One Month Later
    • Week One Done
      Timaximus earned a badge
      Week One Done
    • Rookie
      FBSPL went up a rank
      Rookie
    • First Post
      davidbazooked earned a badge
      First Post

  • Popular Contributors

    1. 1
      +primortal
      508
    2. 2
      PsYcHoKiLLa
      175
    3. 3
      +Edouard
      163
    4. 4
      Steven P.
      86
    5. 5
      ATLien_0
      79
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!