FTP: You wish to remain anonymous?

This tip is an excerpt of the article "An exciting TCP/IP tool: File Transfer Protocol in iSeries installations" published in the September/October 2002 edition (volume 5, number 5) of the iSeries 400 Experts Journal. Provided courtesy of The 400 Group.

A key feature of FTP that you should be aware of is what is referred to as "anonymous FTP."

Anonymous FTP was created to satisfy the demand of FTP-TCP/IP users all over the Internet to send and receive files of a public domain or publicly available nature. As you can imagine, with that amount of data available for FTP transfer, it was and is simply impossible to set-up user accounts and passwords for every user on every FTP server on the Internet.

Here's how it works: When you establish a session with an FTP server, and that server asks you for your user ID, you may be allowed to enter 'anonymous' in reply. What you are trying to tell the FTP server in question is that you either (a) do not wish to identify yourself to this server (more on that in a moment), or (b) that you do not have a user account on that particular FTP server.

If the server rejects your use of 'anonymous' as a user ID, you need to contact the administrator of the FTP server in question to gain a proper user ID and password combination.

On the other hand, if after you enter 'anonymous' as your user ID, the FTP server in question replies with a request for password. This is where your personal identification comes into play.

Tradition -- and in most cases it is merely a tradition and not a session-stopping requirement -- calls for you to use your e-mail address as your password. This identifies you to the administrator of the FTP server, sho

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT iSeries administrator tips Translating Linux for IBM i admins: Using GUI to make it easy Translating Linux for IBM i admins: Working with jobs and networking OpenOffice: What to know before making the transition from Microsoft Office OpenOffice: An enterprise open source solution Database performance comparisons on IBM i Translating Linux for IBM i admins: User profile commands Modern System i reports using Client Access Tips for installing Lotus Domino server on a System i partition The iSeries Blog has a new home on IT Knowledge Exchange Virtualization for IBM i: Backups iSeries Networking CA Express utility helps you manage SSL certificates 20 FTP tips in 20 minutes The Lazy Coder: Find your iSeries using a DNS or name server The Lazy Coder: Fun with TCP/IP Automatically check FTP process for errors Fast guide to Redbooks and guides on printing/output Printing tips and tricks Improve old iSeries communication methods 'Twas the Night Before Christmas in IT How to FTP a physical file via iSeries modem PC/Windows Connectivity CA Express utility helps you manage SSL certificates Windows XP SP2 causes problem for iSeries Access Top 10 tips from our experts The registration facility helps you tailor your system -- Part II 20 FTP tips in 20 minutes Are your terminal sessions secure? Top advice on connecting to the iSeries Fast guide to PC/Windows connectivity resources The Lazy Coder: Find your iSeries using a DNS or name server The Lazy Coder: Fun with TCP/IP

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

uld they review the FTP usage history logs to see who signed-on to this FTP server.

This is not in most cases a requirement for using FTP, merely a courtesy. However, I've noticed a growing number of anonymous FTP servers which seem to scan passwords for the @ character in an effort -- weak as it may be -- to "identify" anonymous FTP users.

The iSeries, for example, presumes that the password being entered when using anonymous iSeries FTP is, in fact, a password.

On the iSeries, anonymous FTP server capabilities are put into use through the deployment of an FTP logon exit program and an FTP server request validation exit program. The use of exit programs with anonymous FTP sessions on an iSeries server serves the greater good of proper security best practices for the data on your iSeries server.

Proceed with caution
Always -- and I do mean always -- make sure that you have an active virus-checking software package running when you download files from an anonymous FTP site, unless the site is running out of the OS/400-side of an iSeries server. This is urgently true if you are using an anonymous FTP site to download files to a PC because there are lots of virus programs embedded in files available on anonymous FTP sites all over the globe -- so be careful.

-------------------------------
About the author: Kris Neely is a senior consulting IT architect and technology relationship manager for IBM. An award-winning speaker at COMMON and other industry events worldwide, Kris has also written several books and hundreds of articles on iSeries and general IT computing.

========================
MORE INFORMATION
========================