So after i've finally set up my home server, I want to make sure it's secure enough..
Firewall wise everything is good to go, but i'm worried about my ftp. FTP should be fine when the user logging in goes to a folder where no harm can be done to the system, however the standard linux users can FTP into the server.
For example, i can type in my IP address and FTP into the server with the root user. Not really safe if you ask me. This goes for all current linux users. On one hand, it's pretty handy to have this feature when I need to make some changes or if i need access to certain folders (i never log in with root btw), but it's also frightning.
What would the pro's advise me on this? Is it something unavoidable? Should i "jail" all users to their home directory? I don't know what to do!