I have a few questions about anonymous FTP and the risks that come with it.

I use a free domain name from dot.tk on my IP based account and would have to give out the IP for anon FTP to work. Do you see anything wrong with that?

What permissions should I set for the directory?

Is there anything else I should be aware of (The anon FTP will be used for event photos and videos)

Thanks!

Anonymous FTP requires an IP to work, so there is nothing wrong with that.

Just make sure all your files are set to read only, and make sure you don't allow any upload, or at least take precaution so that your anonoymous FTP doesn't become a warez distribution site. These warez groups have been known to scan for free upload through automatic tools and take over the FTP site as warez download site.

Peter

patch!patch! FTP servers are also well known for their security problems... make sure to disable upload directories and you will be more safe and your server more secure..

>> wares groups have been known to scan <<


Its not only "known to", it happens every day. Every single day we are probed a number of times. Without fail.

Just a small sample...

Jul 4 23:18:09 rollei ftpd[87701]: ANONYMOUS FTP LOGIN FROM pD9E9902D.dip.t-dialin.net, anonymous
Jul 4 23:18:09 rollei ftpd[87697]: mkdir /users/5403289
Jul 4 23:18:09 rollei ftpd[87701]: mkdir /pub/5403289
Jul 4 23:18:09 rollei ftpd[87701]: mkdir /pub/incoming/5403289
Jul 4 23:18:09 rollei ftpd[87701]: mkdir /pub/outcoming/5403289
Jul 4 23:18:10 rollei ftpd[87701]: mkdir /public/5403289
Jul 4 23:18:10 rollei ftpd[87701]: mkdir /5403289
Jul 4 23:18:10 rollei ftpd[87701]: mkdir /incoming/5403289
Jul 4 23:18:10 rollei ftpd[87701]: mkdir /outcoming/5403289
Jul 4 23:18:10 rollei ftpd[87701]: mkdir /_vti_pvt/5403289
Jul 4 23:18:10 rollei ftpd[87701]: mkdir /upload/5403289
Jul 4 23:18:11 rollei ftpd[87701]: mkdir /userupload/5403289
Jul 4 23:18:11 rollei ftpd[87701]: mkdir /drivers/5403289
Jul 4 23:18:11 rollei ftpd[87701]: mkdir /users/5403289
Jul 5 04:02:14 rollei ftpd[88647]: connection from 203.170.254.19 (203.170.254.19)
Jul 5 04:05:18 rollei ftpd[88653]: connection from 203.170.254.19 (203.170.254.19)
Jul 5 04:52:05 rollei ftpd[88762]: connection from 9.scarb-6-form.ac.uk (195.195.249.9)
Jul 5 04:52:05 rollei ftpd[88762]: ANONYMOUS FTP LOGIN FROM 9.scarb-6-form.ac.uk, IE30User@
Jul 6 09:29:28 rollei ftpd[95461]: connection from 211.104.114.88 (211.104.114.88)
Jul 6 09:29:28 rollei ftpd[95462]: connection from 211.104.114.88 (211.104.114.88)
Jul 6 09:32:24 rollei ftpd[95470]: connection from 211.104.114.88 (211.104.114.88)