Autoblocking based on connection attempt rates or failed logon, blacklisted user names for a duration (e.g. Virtual Folders (Linux-equivalent jails) are the way to go. Gotta have the logging for HIPPA or FACTA compliance. It was the best Windows-based SFTP server we were able to find that prioritized security and logging. If they won't even buy the right solution for users, they certainly won't pay you what you're worth either. That's why I say you're not being paid well enough to care. I am assuming the reason your company didn't roll out Box or some other cloud solution is because they're cheap. Users should only require updated configs on FileZilla (honestly this is probably the biggest challenge.). If home directory is some fixed disk then you can robocopy the data over and cut over one evening. If you're mapping an SMB share into the IIS server for home directory, then you can easily mount that to a new server (you're in luck). Then sort out the home directory issues before cutting over.
I'd start there (build new server that can do this).
I believe in both situations you'll need to sort out authentication with AD because that's not really working "out of the box" (my guess is that whoever set up your IIS server did so cause auth was easy and well.who cares about security during a pandemic).
FTP SERVER FOR WINDOWS ED VERSION PRO
Pro tip if you do want to fix this: you have the option of running OpenSSH on windows (and Linux obviously). You are probably not paid well enough to care. (I want to be clear, that this isnt the best approach, but one that sometimes I myself deem necessary.) Usually once everything’s working, you dont exist again….so. Also id have whatever reason I “cited”printed out already on my desk. if asked why i did that later on, id explain it in a little detail, thenĮnd my sentence saying its all in accordance with “ insert proper term or reason here”. Thats just me though, your experience may be different. You are simply doing your job, just like you have been in previous years. Id do exactly what I am supposed to do following industry standards and practices.Ĭoncentrate on a solution for this issue. If he wants to micromanage, then he can come up with the solution to this problem….which by now he obviously doesnt have one. He gives you a task to complete and tells you what the goal or finished product is, thats where his job ends, and yours begins. Sounds like be is top of the IT Leadership, if so hes somewhat the Director.
FTP SERVER FOR WINDOWS ED VERSION FREE
The way he’s doing it now, it’s nigh impossible for anyone to find out and thus he is free to do whatever (crazy, immoral, etc) thing he wants. In conclusion, he can do what he claims he “needs” to be able to do, above board, the right way, without the end users ever finding out.
Umbrella or what not can handle insight into web surfing. Again though, there better be proper internal controls as you know. They’re hella useful and pulling them doesn’t alert or affect the user at all.Įmail admins have access to everyone’s email without knowing user credentials. Not to mention the reports and info I get from MECM. I can-and do- MMC or C$ to machines to do legitimate work and the end users never know. Including setting people up, framing people, or just deflecting responsibility.Īnyway, back to how the users will never know when you do things the right way. Without that and/or with the boss man able to impersonate anyone and everyone without a trace, that enables them to do almost anything imaginable, scott-free. Needless to say, there does need to be some immutable, secured, and backed up log. There’s going to be zero/nearly zero logs or evidence visible to end users without being that shady though! It is so damn easy to do things above board without the users ever knowing.
0 kommentar(er)
