FTP "securing"

Randy Edwards redwards at golgotha.net
Thu Oct 9 14:44:15 EDT 2003


> The real issue you're facing is that you're authenticating more then one
> party (i.e., more then one customer) using the same username/password (to
> the FTP server).

    Exactly.  What about giving each customer with a support contract a 
unique FTP username/password?

    Then for each customer, make a symbolic link to the patch subdirectory 
so everyone can get their patches.  (This can easily be done with etc/skel 
or a script, the only real work is to replicate it across the 7 FTP servers.)

    When a support contact then terminates, kill the expiring user's 
account, and then they'd get nothing -- yet everyone else with a valid 
contract keeps the same username and access privileges.

  Regards,
  .
  Randy

-- 
"If the current stylistic distinctions between open-source and commercial
software persist,  an open-software  revolution could lead to yet another
divide between haves and have-nots: those with the skills and connections
to make  use of free  software,  and those  who must pay high  prices for
increasingly dated commercial offerings."          -- Scientific American





More information about the gnhlug-discuss mailing list