On Thu, 8 Mar 2001, Elliot Lee wrote:

> > Doesn't this sort of policy belong outside an ftpd, though? vsftpd can now
> > run with all PORT connections coming from port 20 and all PASV connections
> > being restricted to an admin settable port range. That should be
> > sufficient to use Linux kernel firewall + QoS to set limits.
>
> How would you handle bandwidth restrictions on a per-user or per-group
> basis?

That's a good question.

I'd still probably advocate a solution that doesn't complicate the ftpd
with bandwidth/connection management, which is the use of virtual hosting.
The combination of a recent Linux kernel's firewall/QoS stuff, and a
decent inetd, is very powerful.

Cheers
Chris

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]