Help hosting SFTP server on WS2k3

By +Chsoriano
in Smart Home, Network & Security

 Share

Recommended Posts

Veteran

+Chsoriano Subscriber²

Posted
  • Subscriber²
Posted

I'm trying to setup an SFTP server on a WS2K3 box... never setup an SFTP server but after some looking, I found a program called FreeFTPd (trying to do this at no cost). I managed to get accounts setup (using both NT authentication and users setup in FreeFTPd) and it is working...

But it only works if an administrator account is logged into the server and if the FreeFTPd application is running. I installed it as a service but it's not working correctly. I can't leave a user logged on indefinitely because the domain automatically logs users off if inactive.

Any recommendations or advice? Is there a better way to do this?

Any help is greatly appreciated.

Link to comment
https://www.neowin.net/forum/topic/816290-help-hosting-sftp-server-on-ws2k3/
Share on other sites
Grand Master

+BudMan MVC

Posted
  • MVC
Posted

well for starters I think you mean freeSFTPd not the freeFTPd if your wanting to use sftp.

Did you set it up as a system service when you installed it? Im not familiar with that specific product - what I would suggest if you want sftp run it on a linux box. Or run a linux virtual machine on your server -- this could be done free with say vmware server. This currently how I do it.

Veteran

+Chsoriano Subscriber²

Posted
  • Author
  • Subscriber²
Posted

yeah, I've considered setting up a linux vm to host the sftp server, I am going to continue to mess around with it... I still have to secure the hardware for it, I'd rather have it on a physical box.

And yeah, it is installed as a system service, it appears in the service list, but I'm not sure if I have to configure it at all... now that I think about it I'll go check.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

I'll give it a play when I get home on my 2k8 box, but the linux box be it physical or virtual would be my choice for hosting sftp.

Also its a given as soon as you fire up a sftp server your going to get hit with brute force attempts. I would suggest only allowing public key auth vs passwords.

or at min run a script to block ips that try to bruteforce you, or both ;) Not sure how you would do that with these ports to windows for ssh/sftp

Grand Master

offroadaaron

Posted
Posted
Also its a given as soon as you fire up a sftp server your going to get hit with brute force attempts. I would suggest only allowing public key auth vs passwords.

or at min run a script to block ips that try to bruteforce you, or both ;) Not sure how you would do that with these ports to windows for ssh/sftp

Or change the ports from the standard ports.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Changing ports is not security - "Obscurity is not Security"

You can do that if you want -- but it does not secure anything, and can run into problems trying to connect from a location that blocks non standard ports.. Its common to block nonstandard outbound ports.

I would suggest you correctly secure your connection vs trying to just hide it. If you want to change the port as well, thats your choice but keep in mind that is not security method.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Microsoft releases major feature updates for stock Windows 11 apps

      By Neeo · Posted

      When will the Photos app be updated to remember the window size and position when reopened? They addressed this issue in a 2024 version of the app (though I can't recall the build number). Unfortunately, after that specific version, the problem persists! Please prioritise this fix in your K2 schedule. Additionally, the Snipping Tool has lost the ability to capture the Windows Taskbar starting from the 2024 version!
    • EU Commission explains why Siri AI isn't launching in the EU, and Apple is to blame

      By Dutchie64 · Posted

      Oh dear... my sweet summer child......
    • Spotify finally removes the disco ball app icon in the latest update

      By Xerxes · Posted

      Same, never saw it on Android or iOS. Guess only some people got it *shrugs*
    • Anthropic pulls Fable 5 and Mythos 5 after US export control order

      By pradeepviswav · Posted

      Anthropic pulls Fable 5 and Mythos 5 after US export control order by Pradeep Viswanathan In April this year, Anthropic launched the Claude Mythos Preview frontier model with state-of-the-art cyber and coding capabilities for a select set of companies around the world. After preparing appropriate guardrails, early this week, Anthropic launched Claude Fable 5 and Mythos 5, its most capable AI models. Claude Fable 5 is for general users and comes with strict safeguards, while Mythos 5 is designed with fewer safeguards for cybersecurity and biology use cases. Today, Anthropic abruptly suspended access to its Fable 5 and Mythos 5 AI models for all customers after receiving an export control directive from the US government. The company received the directive from the government today at 5:21 p.m. ET, and the received letter did not provide any details regarding the national security concern. Anthropic understands that the government became aware of a method to bypass, or “jailbreak,” Fable 5, which might be the reason behind the directive. The order was issued under national security authorities and requires the company to suspend all access to Fable 5 and Mythos 5 by any foreign national, whether they are inside or outside the United States. The restriction also applies to foreign national employees working at Anthropic. As a result, the company has disabled both models for all customers to ensure compliance. Access to previous Anthropic models like Opus and Sonnet is not affected by this government order. The company highlighted that it had developed strong safeguards to reduce the possibility that Fable is misused for tasks related to cybersecurity. In fact, many developers are complaining that the safeguards are going overboard. Additionally, the company worked with the US government, the UK AISI, multiple private third-party organizations, and internal teams to red-team Fable’s safeguards for thousands of hours. Finally, Anthropic noted that no testers have yet been able to find a universal jailbreak on Fable 5. As expected, Anthropic disagrees that a narrow potential jailbreak should lead to the recall of a commercial model used by hundreds of millions of people. It warned that applying this standard across the AI industry could effectively halt new frontier model deployments. Anthropic concluded by mentioning that it is working to restore access to Fable 5 and Mythos 5 as soon as possible and plans to share more details within the next 24 hours.
    • Brave Browser 1.91.172

      By Copernic · Posted

      Brave Browser 1.91.172 is out.

  • Recent Achievements

    • Week One Done
      ssd21345 earned a badge
      Week One Done
    • Contributor
      MarkHughes4096 went up a rank
      Contributor
    • Dedicated
      jordanspringer earned a badge
      Dedicated
    • Rookie
      Rimplesnort went up a rank
      Rookie
    • One Year In
      Markus94287 earned a badge
      One Year In

  • Popular Contributors

    1. 1
      +primortal
      503
    2. 2
      +Edouard
      176
    3. 3
      PsYcHoKiLLa
      147
    4. 4
      ATLien_0
      92
    5. 5
      Steven P.
      79
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!