Configuring anonymous File Transfer Protocol
Anonymous File Transfer Protocol (FTP) enables remote users to use the FTP server without an assigned user ID and password.
Anonymous FTP enables unprotected access (no password required) to selected information about a remote system. The remote site determines what information is made available for general access. Such information is considered to be publicly accessible and can be read by anyone. It is the responsibility of the person who owns the information and the system to assure that only appropriate information is made available.
To access this information, a user logs on to the hosts using the user ID ANONYMOUS. The user ANONYMOUS has limited access rights to the files on the FTP server and has some operating restrictions. Typically, the following operations are only operations allowed.
- Logging on using FTP
- Listing the contents of a limited set of directories
- Retrieving files from these directories.
Typically, anonymous users are not allowed to transfer files to the FTP server. Some systems do provide an incoming directory for anonymous users to send data to. Traditionally, the special anonymous user account accepts a string as a password, although it is common to use either the password guest or one's e-mail address. Some archive sites explicitly ask for the user's e-mail address and do not allow logon with the guest password. Providing an e-mail address is a courtesy that allows the archive site operators to get some idea of who is using their services.
Anonymous FTP on the IBM i operating system
The File Transfer Protocol (FTP) server does not use anonymous FTP. To set up anonymous FTP on the IBM i operating system, you need to provide exit programs for the FTP server logon exit point and the FTP Request Validation exit point.
You might want to provide anonymous FTP because it is a convenient and often necessary service. However, using anonymous FTP raises security concerns for the system.