In this article "Introduction to Serv-u ftp server construction", we have made a brief introduction to the Serv-u ftp server construction process, next we will introduce this process step by step. I hope everyone can understand this process.
Instructions for use
All settings that users may encounter when using Serv-U can be implemented through the menu options in the Serv-U window. If the Serv-U control window is not displayed on the screen when you start Serv-U after Serv-U is installed, right-click the Serv-U icon in the system tray of the task bar, and select the first "Show Window" in the pop-up menu ", in this way, the control window of Serv-U is displayed.
Set up an FTP server
The first FTP-SERVER in the SETUP menu in the Serv-U control window is used to set the overall FTP server. The first "ftpport number" in the window that appears after selection is used to set the port NUMBER used by the FTP server. The FTP server listens to information of all visiting users through this port. Generally, the default port number of the FTP server is 21, but you can change it as needed, as long as the port number is not in conflict with other network applications. It should be noted that using the server port selected by the user can play a very good role in security defense, only users who know the port number can successfully connect to the server. Therefore, it is recommended that you use the selected port when setting the FTP server, instead of simply using the default value.
Then you need to set the maximum speed that the server can provide. In general, the user can leave this blank, then the server will use all possible bandwidth to provide services to the customer. It is certainly good to provide users with the maximum access speed, but too many FTP users may eat away all possible bandwidth, making it almost impossible for other network applications to achieve. Therefore, it is important to properly control the maximum bandwidth occupied by the FTP server.
Next, set the maximum user access allowed by the server. Here, you can limit the maximum number of users who can access the FTP server within the same period of time. If this option is set to 0, the FTP server rejects any user access requests. If this option is left blank, Serv-U will not control the number of visitors, until all system resources are exhausted. If you want your FTP server to run properly, you 'd better limit the number of visiting users. In general, even the old 486 machines, after using Serv-U, can provide access support for more than 20 users at the same time.
The first option in a series of subsequent retries is "enable security feature ". If this option is not selected, anyone can directly access the FTP server through the network and copy, modify, or even delete any files on the server. Except for those who have a small range of personal networks and do not want to repeatedly enter usernames, passwords, and other complex procedures for each login, the user must make sure that this option has been selected, that is, the server security protection function is enabled.
The next "encrypt passwords" item is also automatically selected by default. In this way, Serv-U uses the same encryption mechanism as the UNIX operating system to encrypt and save the user's password. If the user does not choose to encrypt the password, the passwords entered by all users are saved in plaintext in the Serv-U.ini file located under the Serv-U installation directory.
The next item is used to set whether anonymous access users are required to enter the password. By default, this field is blank, so that users who access the FTP server using an anonymous account are not required to enter a password. It should be noted that the detection of anonymous user passwords is very simple here, as long as Anonymous Users enter any strings that match the email address format, serv-U does not further judge whether the email address entered by the user exists.
The next item is anti-Timeout measures. If you select this option, Serv-U will adopt a new time recording method. users who want to regularly send commands to the server to prevent timeout will not succeed.
The subsequent options are used to determine whether to delete a file that has not been fully uploaded. If you do not use the delete function, when a user uploads a file to the FTP server but fails to complete the file upload, Serv-U retains the uploaded content on the hard disk, this enables resumable upload of uploaded files.
Next we will discuss cross-FTP attacks. Generally, when the FTP protocol is used for file transmission, the client first sends a "PORT" command to the FTP server, this command contains the user's IP address and the port number that will be used for data transmission. After receiving the command, the server uses the user address information provided by the command to establish a connection with the user. In most cases, the above process will not cause any problems. However, when the client is a malicious user, it may add specific address information to the PORT command, establish a connection between the FTP server and other non-client machines. Although this malicious user may not have the right to directly access a specific machine, if the FTP server has the right to access this machine, then the malicious user uses the FTP server as an intermediary, the connection to the target server can still be achieved. This is the cross-server attack we mentioned. To prevent the above situation, you can select the "cross-FTP server attack prevention" option, so that Serv-U can establish a connection with any visiting users, first, check whether the address information provided by the user is the actual address. Everything is in two ways. We already know that Serv-U can be used to prevent cross-FTP server attacks, but at the same time, we also gave up the data transmission function between the FTP server and the FTP server. This is because Serv-U will only establish a connection with users whose provided addresses are consistent with the actual address of the address provider, you cannot remotely control file transfer between two different FTP servers.
The last two options are used to limit the maximum residence time of the user on the FTP server, and specify the case sensitivity of the file and directory names on the server.
Other related options in this window will be described in detail later.