setting up 2000 server ftp access

watts3000

Senior member
Aug 8, 2001
619
0
0
Can anyone explain to me the difference between the 2 forms of authentication that windows 2000 ftp servers use. The authentacations are allow anonymous connections and allow only anonymous connections.
 

bsobel

Moderator Emeritus<br>Elite Member
Dec 9, 2001
13,346
0
0
> anonymous connections and allow only anonymous connections.

There pretty much like they sound. Anonymous connectoins means that someone can login use the 'anonymous' login to your site, but people can also login (if they have the proper rights) with the W2K login name/password.

Only anonymous connections allows anonmous connections and won't allow the W2K login to work. You would typically do this to ensure that users aren't transmitting their passwords in clear text.

Bill
 

watts3000

Senior member
Aug 8, 2001
619
0
0
Ok I just want people to be able to log in with win2k passwords but I would like for them to be encrpyted for security. Basically I want everyone to have to use a password.
 

bsobel

Moderator Emeritus<br>Elite Member
Dec 9, 2001
13,346
0
0
> but I would like for them to be encrpyted for security

FTP send the passwords in plain text, you'll need something else (secure ftp for example) but IIS doesn't support that.
Bill
 

watts3000

Senior member
Aug 8, 2001
619
0
0
what do you mean iis does not support that should'nt it be able to be installed as a standalone ftp server. What about win 2000 128 bit encryption or does that only work for the lan side.
 

Workin'

Diamond Member
Jan 10, 2000
5,309
0
0
It's not IIS's fault that FTP doesn't support encrypted logins. The FTP standard mandates the transmission of passwords as plain text, so NO standard FTP server can offer that functionality.

Like Bill said, you'll need to use secure FTP (SFTP) or something else to allow secure access.

For example, I set up a SSH server on my Windows 2000 Advanced Server box and use a SFTP client to access it. Using SSH encrypts ALL communication between the client and the server. It's a little more difficult to set up, and there are other options to use SSH to log on to an anonymous site (i.e., use a SSH "tunnel") and encrypt the data transferred over the wire.