We had an urgent problem because a web user had disclosed his secret ftp
update directory and it was being used as a transit point with huge files
and so many anon ftp users that it brought down our system with too many
(overall) processes.
There appears to be NO way under DU to restrict the number of anon ftp
users if you are running the standard supplied ftpd. (DEC pse note I
think this should be a facility within inetd as a parameter to limit the
launching of any service.)
If you use wu-ftp it can be done easily. I am still struggling to
compile the latest beta version - without much success. Most responders
suggested this route.
An interesting suggestion was to use idled. The home page is
http://www.dimensionx.com/people/crider/idled/
This was compiled relatively easily but is not a direct solution. It is
well worth visiting the page to see if it might be of use to you.
The eventual desperate solution was to move the client's directory to an
unknown position so that anon ftp users got a broken link and went away.
We eventually got in touch with the client - who had been on his way to
the Isle of Man from Iran, and fixed the problem. However we need to
plug this hole in case of future problems.
Thank you to all the speedy responses. It is nice to know that other hard
pressed sysadmins will spare a moment to help.
Stuart McKenzie
Received on Tue Nov 12 1996 - 12:28:04 NZDT