FTP Server Registry Settings (Compact 2013)
3/26/2014
The registry stores information necessary to configure the system for applications and hardware devices. The registry also contains information that the operating system continually references during operation.
Note
The default registry values vary depending on which catalog items are included in your OS design.
The following table shows the default registry settings for HKEY_LOCAL_MACHINE\COMM\FTPD that are included when the FTP server is added to your OS design.
Value : type |
Description |
|---|---|
AllowAnonymous : REG_DWORD |
Default set to 1. Possible values are 0 (false) or 1 (true). Determines whether the server will allow anonymous access. .gif "Ee498908.security(en-us,WinEmbedded.80).gif") Security Note:
If this value is set to 1 (true), it will allow users to connect to the server without providing verifiable credentials. Unauthorized users can log in using the username "anonymous" and any password to gain access. We recommend that you set this value to 0 (false) and use the UserList registry setting to specify all allowed users.
|
AllowAnonymousUpload : REG_DWORD |
Default set to zero (0). Possible values are 0 (false) or 1 (true). Determines whether authorization is required to upload files to the server, delete files from the server, and rename files. Security Note:
If this value is set to 1 (true), unauthenticated users will be able to copy files to, and delete files from, your server. This can increase security risks because unauthorized users might upload unauthorized applications and documents, or they might delete important system files. We recommend that you do not allow upload permission for anonymous users.
|
AllowAnonymousVroots : REG_DWORD |
Default set to zero (0). Possible values are 0 (false) or 1 (true). Specifies whether access to virtual roots is granted or denied to anonymous users. Security Note:
If this value is set to 0 (false), anonymous users will be able to access only the main FTP share. If this value is set to 1 (true), unauthenticated users will also be able to access VROOTs in addition to the main share. Therefore, you should use this setting with caution.
|
AllowLowPortValues : REG_DWORD |
Default set to false (0). Possible values are 0 (false) or 1 (true). If this value is set to 0 (false), all PORT commands requesting a port equal to or lesser than 1023 will be rejected. If this key is set to 1 (true), low ports will be allowed. |
DefaultDir : REG_SZ |
Default root directory. Directory and subdirectories of this key are accessible remotely. If this value is not set in the registry, the default is \Temp. |
IsEnabled : REG_DWORD |
Default set to 0. Possible values are 0 (false) or 1 (true). Determines whether or not the server will accept incoming connections. This value is typically used to keep the server disabled at boot time. |
UserList : REG_MULTI_SZ |
Provides a semicolon-separated list of allowed users. Security Note:
We recommend that you set this value to a list of all users who have been given access to the server and its member VROOTs. By specifying the allowed users in UserList and setting AllowAnonymous to (0) false, you help protect the device from most unauthorized users and keep your files available only to those users with authorization to see them.
|
NoSystemInfo : REG_DWORD |
No default set in registry. Uses a value of 0 if no value is set. If NoSystemInfo is set to 1, and a remote FTP client requests the Operating System name and version from the FTP server (via the “SYST” command), the FTP server will not provide it. |