[NCLUG] Securing ftpd

[dobbster]

A couple questions...

Could someone point me to a good primer at maximizing the security of
ftpd with or without using ssh?

On one machine, I can't use ssh because most of the clients are Windows
(unless there is a way for Windows clients to use ssh; I'm not aware of
one).

Second: My security logs show the same hacker trying to get into two
different machines on completely different networks.  The only thing
relating these two machines is a nightly rsync using ssh.  How would the
hacker know about this?

Thanks,

Mark (dobbster at dobbster.com)