[lug] Replacing FTP with a Web App?

jd lug at taproot.bz
Fri Feb 28 11:14:29 MST 2003


 I would try a mixture of ssl and cgi. However if your gonna transfer
large files, you will loose the abiltiy to resume upload if you
use ftp over http or http without a download manager. But if you did do
this authentication could be as easy as using
  .htaccess.

jd
jd at taproot.bz


On Thu, 2003-02-27 at 21:54, Richard Heintze wrote:
> My client is presently running a public FTP server on
> a windows box.
> 
> Is it true that FTP is a security risk? 
> 
> He wants to abandon FTP in favor of a more user
> friendly web application. I suggested WebDAV but he
> thougth that was too complicated for his users. 
> 
> Since he wants to eventually abandon Windows in favor
> of Linux, how would you suggest I write a secure web
> app that emulates only the login/password/security,
> "put" and "ls" features of FTP?
> 
> J2EE (and therefor TOMCAT/JBoss) implements
> authentication and authorization and they run well on
> windows and linux.
> 
> I think Apache HTTPD implements authentication and
> authorization too -- probably with perl.
> 
> Are there any other approaches you might recommend?
> 
>  Thanks,
>          Siegfried
> 
> 
> __________________________________________________
> Do you Yahoo!?
> Yahoo! Tax Center - forms, calculators, tips, more
> http://taxes.yahoo.com/
> _______________________________________________
> Web Page:  http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug




More information about the LUG mailing list