Table of Contents
Advertisement
Intruder Detection
Access Restrictions
34
NetWare FTP Server Administration Guide
The IP address of the host (HOST_IP_ADDR) and the port number
(FTP_PORT) as defined in the configuration file are used to bind to and listen
for FTP client connection requests. The configuration file can be specified
while starting the FTP server. If these parameters are not defined in the
configuration file, the default IP address and the standard FTP port number are
used.
For more details, see
A user is considered an intruder when the number of unsuccessful log in
attempts is greater than those specified by the parameter
INTRUDER_USER_ATTEMPTS in the configuration file. Similarly, a host/
client machine is considered an intruder when the number of consecutive login
failures for any user from that host is greater than the configured limit
specified by the parameter INTRUDER_HOST_ATTEMPTS.
If a successful login is encountered before the attempts limit is reached, the
login failures count is reset to zero.
When a user becomes an intruder, his account is locked out for an interval of
time specified by the parameter USER_RESET_TIME in the configuration
file.
When a host becomes an intruder, access to the FTP Server is denied for that
host machine for an interval of time specified by the parameter
HOST_RESET_TIME in the configuration file.
The FTP service enables you to specify access restrictions for a user, a client
host, and the IP address of a client host. The access restrictions are specified
in the restrictions file, which can be configured (RESTRICT_FILE). Access
restrictions can be specified at various levels and multiple access rights are
allowed.
Table 1, "Multiple Instances Parameters," on page
14.
Advertisement
Chapters
Table of Contents
Troubleshooting
