Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Chris Evans (chrisscary.beasts.org)
Date: Thu Mar 08 2001 - 19:00:01 CST
On Thu, 8 Mar 2001, Elliot Lee wrote:
> > Doesn't this sort of policy belong outside an ftpd, though? vsftpd can now
> > run with all PORT connections coming from port 20 and all PASV connections
> > being restricted to an admin settable port range. That should be
> > sufficient to use Linux kernel firewall + QoS to set limits.
> How would you handle bandwidth restrictions on a per-user or per-group
That's a good question.
I'd still probably advocate a solution that doesn't complicate the ftpd
with bandwidth/connection management, which is the use of virtual hosting.
The combination of a recent Linux kernel's firewall/QoS stuff, and a
decent inetd, is very powerful.