Linux Server Security (2nd Edition( [Electronic resources]

11.3. Resources

Bernstein, D. J. "PASV Security and PORT Security."

Online article at http://cr.yp.to/ftp/securityl (17 April 2004).

http://cr.yp.to/publicfilel. (17 April 2004)

The home of publicfile, D. J. Bernstein's secure FTP/HTTP server. Like djbdns, it uses Bernstein's daemontools and ucspi-tcp packages.

Carnegie Mellon University (CERT Coordination Center). "Anonymous FTP Abuses." (http://www.cert.org/tech_tips/anonymous_ftp_abusesl) 17 April 2004.

Carnegie Mellon University (CERT Coordination Center). "Anonymous FTP Configuration Guidelines." (http://www.cert.org/tech_tips/anonymous_ftp_configl) 17 April 2004.

Carnegie Mellon University (CERT Coordination Center). "Problems with the FTP PORT Command or Why You Don't Want Just Any PORT in a Storm." (http://www.cert.org/tech_tips/ftp_port_attacksl) 17 April 2004.

Garfinkel, Simson and Gene Spafford. Practical Unix and Internet Security. Sebastopol, CA: O'Reilly, 1996.

Klaus, Christopher. "How to Set up a Secure Anonymous FTP Site."

Online article; no longer maintained (Last update: 28 April 1994), but available at http://www.eecs.umich.edu/~don/sun/SettingUpSecureFTP.faq.

http://www.proftpd.org.

The official ProFTPD home page.

http://vsftpd.beasts.org.

The official vsftpd home page.

http://rsync.samba.org.

The official rsync home page.