> >You can make vsftpd do a lot of things, and as it was written for > >security first its extremely well designed. > > It does, however, allow unlimited password cracking attempts, while Proftpd > can be configured to prevent, with the help of some iptables rules. > (Ignore what that dolt Excalibur Xcalibur will say in response -- PEBKAC.) It does. Although it supports tcp_wrappers so you can still do this but not so prettily. The usual vsftpd configuration is to set it to anonymous only, which will provide weeks of pointless amusement to anyone trying to crack passwords however. Given ftp sends passwords in plain text its not usually a good idea to allow non anonymous access except when you can force SSL for non anonymous users anyway Alan
