General discussion


FTP Site Security

By qb4006 ·
I'm new to FTP and could use some help.

I just "inherited" an FTP site (running on IIS)that management would like to secure. The site is used to transfer files between us and clients. The site has a username and password for access but once you are in, all folders on the site are accessible to everyone. Is there anyway to put security on each folder that is on the site? For example if I have 20 folders on the site can I secure each folder in a way to allow "client A" access to one folder but not the other?

From: qb4006 Date: 02/06/04

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

by Rabbit_Runner In reply to FTP Site Security

Certainly, this can be accomplished.
First, you will need to create a username and password for each client. client1, client2, client3... Each would have their own password.

Now, any of these users with the correct password would have access to the FTP site. But at this point, you would need to adjust the permissions on each specific folder.
For example... Folder1 = Client1, Folder2 = Client2, etc. The permissions will be NT permissions. You can deny access to all other folders except the one assigned to that particular client. At that one folder they would have full access.
All of this is fairly straight forward, but I would recommend doing some planning on paper, before starting to implement. Once that is completed and you have a clear understanding of who will access what, you will need to create the needed users. As a suggestion, create a Group which will have access to the root FTP folder. Place all of the users in this group. From there, only grant to each user the permissions you have determined.

Hope this helps.

Michael R.

Collapse -

by qb4006 In reply to

Poster rated this answer.

Collapse -

by ewgny In reply to FTP Site Security

You may also want to consider a secure FTP software solution. Setting permissions on the server can keep clients from each others info.
However FTP passwords and Data are un-encrypted,
and vulnerable to sniffers, and man in the middle attacks
Take a look at these links

Another advantage of a packaged product, is that it can give your client an easy interface to work with

Collapse -

by qb4006 In reply to

Poster rated this answer.

Collapse -

by qb4006 In reply to FTP Site Security

This question was closed by the author

Related Discussions

Related Forums