FileZilla

Now if following along to create a secure ftp server using filezilla we need to goto 

FileZilla-project

and download filezilla so a open source project meaning you can view the source code before compiled so you can see exactly whats going on in security this is nice if you know what your looking for you can tell if there is a backdoor for the nsa like ive read windows has atleast in windows xp not positive if true but thats whats awesome about open source.

now you have installed so now we have to set it up we do that by opening the interface app under 

start>all programs>FileZilla>filezilla interface

the 127.0.0.1 is called the local host loopback its a line of code in the tcp/ip protocol that  is used for debugging network issues but you can also use so you dont need to find your local machines port or so the connection stays inside your computer and not out side but if you want to configure the server from another box you can do that by typing that box ip in 

port by default is 14147 that has to be there for first start you can change it after setting the server up for a different port i change it just to keep curious people from trying to hack it or if there is a flaw in it they hopefully cant exploit it

there is no password set so thats blank just hit enter

now to get the hard stuff set up first we are going to goto

Edit>settings>passive mode

check mark custom port range anything above 1500 below that there are lots of ports pre assigned like when you view a webpage its port 80 but if runnning a webserver its 8080 ftp 21 ftps 990

i used 6000-6100 there was a post that stated that 50 ports should be fine i created 100 just to make it a big even number may change this one to lots less after some testing just so in the future i wont run into issues of other programs or what may happen

now check mark how to get your outside ip address example one way you can get it is by going to whatismyip.com and copy and past the numbers looks like 69.123.445 or if you have a dns server set up some where you can put that info in the retrieve external ip.

then goto SSL/TLS

check mark enable ftp over ssl

private key> c:\openssl\mycerts\server.crt

certificate key> c:\openssl\mycerts\ca.crt

im not possitive if this is how it is sapose to be set up but this is my process to get it to work

make a password

then checkmark allow explicit ftp

now if you want to only be able to access the server by using a ftp client and only by secure means check mark disallow plain unencrypted ftp 

i created a guest account so if im somewhere without a ftp prog i can access the files if i need to you can use cmd ftp to upload sign on and upload files using a account with the proper privileges 

then click on generate certificate

all this can be random but in example i typed

set the bit to 2048 you can goto 4096 if you want most secure these can be cracked by using rainbow tables but even the lowest 1024 will take awial to do and i think i heard ppl have cracked it 2048 i dont think has been cracked really because it would take a trillion years but sercurity is being enforced because computers are getting better and faseter so alot of companys are going to 4096 and in our life time we should not see this crackable unless a new technique arises

us

alaska

northpole

thekrypt

IT

xfallenxcripplex@gmail.com

thekrypt

<then i saved the key to my openssl cert file>

hit generate and then all you need to do is set up your groups or and users with proper shared files you can mess around with it to get a better understandind by creating a admin group then create shares you user folder or whatever and check mark allow reading, creating..... everything on the list basically its admin you should be doing whatever you want and there is no option in this spot to allow editing the ftp server so all good

if you dont have a router and is connected directly to the internet by a dsl, cable or dial modem then your set to go

but if you have a router in between your server and the modem then you have to set up the router to forward ports in my router i was able to make a name 

ftp 

set incoming port 21,6000-6100

your server computer 192.168.100.101 is example you can find that by going on the computer and typing ipconfig in the server or your router has a drop down list of computers on the network or a list some where

then out going ports you want the same mine i didn't have to type anything 

then for ftps

ftps

ports 990,6000-6100

192.168.100.101

save and logout 

now if you have unsecure ftp capable you can goto your browser and type 

ftp://69.123.445

enter your account name and password you set up

now to securely log in you'll have to use a ftp client i used filezillas client since its opensource and free and easy to find

and you just enter user name ip address and password then port 990 and connect and you are connected to the home folder how to change to a different drive since i have all my harddrives drive directories shared to my admin i do not know how to change in the client only in cmd ftp can you type /d: and will change drives