Monday, January 12, 2009


Just a reminder for my colleagues, no detailed stuff, so if a bunch of crackers enters your site I will not consider myself responsible :-)

To configure FTP access on a Windows host (assuming a default FTP server is already up and running):
  • Create an "FTPUsers" group, or something similar; this will contain all users that will access your preciousss files and folders (hiss as Gollum when you read this)
  • Decide which folder on your hard drive will contain the files... and, please, do not use the default one :-) This will be your ftp root. Give the FTPUsers group read permissions.
  • Create a user, remove it from the default "Users" group for added security and add it to the FTPUsers group.
  • Create a new folder in your ftp root; this will be the default folder for your freshly created user.
  • Give that user the appropriate NTFS read/write permissions on the folder
  • Create a new virtual directory in IIS pointing it to the folder you just created, naming it after your user; in the FTP Properties / Security Accounts tab disable the "Allow Anonymous Connections" checkbox.
  • Finally, test the connection... No TDD on this :-)
This reminds me of when I was younger, so much younger than today... at least at the time this was in my job description :-P

No comments: