Security Issues

Bogi

Not sure if this is the correct place to ask for help and I hope I am not out of line for asking it here.

Recently a disgruntled member of my board posted private files located on our FTP server.
I feel stupid for not knowing almost anyone can gain acess to these files with little work involved.
He right clicked on a photo posted on the board (the photo was stored on the FTP server).
From there he pasted that location into his browser and was able to see files and sub-folders stored on our server.
He went through and found items that were not meant for public publication and made them public.
My question is this....
Is there ANY way that we can prevent this from happening again?
I thank anyone that can help me out.

Rob

drawmack

1) Turn off annonymous ftp access
2) Check out my hotlink prevtion scripts in the code critique forum they will tell you how to link to files without revealing their location.

Bogi

THANKS much. I am going to search for your link now.
If you could save me some time and be so kind as to walk me through WHERE to turn off the annonymous FTP access it would help out a lot.
Is that done in the Admin Panel somewhere or on the actuall FTP server using an FTP client?
Thanks again.

drawmack

I cannot do that because I have no idea what ftp server you're using or what admin software you're using contact your hosting provider for information.