Help hosting SFTP server on WS2k3

By +Chsoriano
in Smart Home, Network & Security

 Share

Recommended Posts

Veteran

+Chsoriano Subscriber²

Posted
  • Subscriber²
Posted

I'm trying to setup an SFTP server on a WS2K3 box... never setup an SFTP server but after some looking, I found a program called FreeFTPd (trying to do this at no cost). I managed to get accounts setup (using both NT authentication and users setup in FreeFTPd) and it is working...

But it only works if an administrator account is logged into the server and if the FreeFTPd application is running. I installed it as a service but it's not working correctly. I can't leave a user logged on indefinitely because the domain automatically logs users off if inactive.

Any recommendations or advice? Is there a better way to do this?

Any help is greatly appreciated.

Link to comment
https://www.neowin.net/forum/topic/816290-help-hosting-sftp-server-on-ws2k3/
Share on other sites
Grand Master

+BudMan MVC

Posted
  • MVC
Posted

well for starters I think you mean freeSFTPd not the freeFTPd if your wanting to use sftp.

Did you set it up as a system service when you installed it? Im not familiar with that specific product - what I would suggest if you want sftp run it on a linux box. Or run a linux virtual machine on your server -- this could be done free with say vmware server. This currently how I do it.

Veteran

+Chsoriano Subscriber²

Posted
  • Author
  • Subscriber²
Posted

yeah, I've considered setting up a linux vm to host the sftp server, I am going to continue to mess around with it... I still have to secure the hardware for it, I'd rather have it on a physical box.

And yeah, it is installed as a system service, it appears in the service list, but I'm not sure if I have to configure it at all... now that I think about it I'll go check.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

I'll give it a play when I get home on my 2k8 box, but the linux box be it physical or virtual would be my choice for hosting sftp.

Also its a given as soon as you fire up a sftp server your going to get hit with brute force attempts. I would suggest only allowing public key auth vs passwords.

or at min run a script to block ips that try to bruteforce you, or both ;) Not sure how you would do that with these ports to windows for ssh/sftp

Grand Master

offroadaaron

Posted
Posted
Also its a given as soon as you fire up a sftp server your going to get hit with brute force attempts. I would suggest only allowing public key auth vs passwords.

or at min run a script to block ips that try to bruteforce you, or both ;) Not sure how you would do that with these ports to windows for ssh/sftp

Or change the ports from the standard ports.

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Changing ports is not security - "Obscurity is not Security"

You can do that if you want -- but it does not secure anything, and can run into problems trying to connect from a location that blocks non standard ports.. Its common to block nonstandard outbound ports.

I would suggest you correctly secure your connection vs trying to just hide it. If you want to change the port as well, thats your choice but keep in mind that is not security method.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Spotify finally removes the disco ball app icon in the latest update

      By +pmrd · Posted

      Was it too much to ask to show the icon in this article?
    • Windows 11's big performance boost is finally available for all

      By Case_f · Posted

      Frankly, I blame whoever is writing such articles. "A big improvement/update and/or new feature is now available to everyone! Also, use this unofficial tweak tool to enable it because it actually isn't available to you yet officially and might not in fact even be entirely ready or whatever, hence why it is perhaps not enabled for you*. But it's great and you should enable it!" I mean there's nothing wrong with sharing info about some feature you might need to enable via unofficial means, of course. It's just that these articles tend to essentially end up being two news pieces in one, and one of them tends to be a bit misleading. (*Yes, yes, the "it's a controlled rollout!" thing. Not a fan of that one either. The argument, not the actual rollout.)
    • SQL Server Management Studio 22.7 brings "What's New" page, T-SQL formatting, and lots more

      By wrack · Posted

      Thank you. Will do. I read in the release notes that editor config might be at play here.
    • Windows 11's big performance boost is finally available for all

      By eiffel_g · Posted

      Actually, I think even Microsoft doesn't know how to control it
    • OpenAI is making Codex more useful in Chrome and the cloud

      By pradeepviswav · Posted

      OpenAI is making Codex more useful in Chrome and the cloud by Pradeep Viswanathan OpenAI's Codex now has more than 5 million users, up nearly 4x from earlier this year. To further accelerate Codex's growth among developers, OpenAI today announced that it has agreed to acquire Ona, a company that builds secure cloud execution and orchestration technology for developers. Ona will enable developers to run Codex with persistent and controlled cloud infrastructure for long-running agentic workflows. Right now, most Codex execution happens locally on developers' laptops and PCs, and the agents work continuously for hours. Through Ona, OpenAI aims to make Codex agents keep working for days without being tied to a user’s local machine or an active session. This will be an important capability for enterprises that want to deploy AI agents in production while maintaining control over infrastructure, data, security boundaries, credential scope, logging, and review workflows. Like any acquisition, the deal is still subject to customary closing conditions, including regulatory approvals. Until the deal closes, OpenAI and Ona will continue to operate as separate companies. After closing, Ona’s team will join the Codex team to improve developer workflows. Alongside the Ona acquisition announcement, OpenAI today introduced a few Codex updates. Developers can now save Codex rate limit resets and use them later instead of losing them when they are not needed immediately. OpenAI is also adding a referral option where users can invite a friend to Codex and get a saved rate limit reset. OpenAI today also announced a developer mode for browser use in Chrome and the Codex in-app browser. With this mode, Codex can use the Chrome DevTools Protocol to debug web apps, inspect pages, and work more directly with browser-based development workflows. Developers can use this when they want Codex to profile JavaScript, inspect console output and network traffic, examine web page states including the DOM and applied styles, and more.

  • Recent Achievements

    • Week One Done
      davidbazooked earned a badge
      Week One Done
    • One Month Later
      Jamswaz earned a badge
      One Month Later
    • Week One Done
      Jamswaz earned a badge
      Week One Done
    • Rookie
      Marzoid went up a rank
      Rookie
    • Community Regular
      coch went up a rank
      Community Regular

  • Popular Contributors

    1. 1
      +primortal
      509
    2. 2
      PsYcHoKiLLa
      186
    3. 3
      +Edouard
      157
    4. 4
      Steven P.
      83
    5. 5
      ATLien_0
      75
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!