Securing Incoming and Outgoing Transfers
-
Modify Incoming Transfers and Outgoing Transfers settings within
the aspera.conf file, which is located at:
/opt/aspera/etc/aspera.conf
You can then set transfer permissions on an individual user basis using their sections in the aspera.conf file.<default> ... <authorization> <transfer> <in> <value>deny</value> <!-- Incoming Transfer --> </in> <out> <value>deny</value> <!-- Outgoing Transfer --> </out> </transfer> ... </authorization> ... </default> -
(Complete this step if your system is a dedicated FaspexServer and is not performing transfers
with IBM Aspera High-Speed Transfer Server or HSTS) Only allow user "faspex" within
HSTS
You can verify the faspex user and corresponding settings within the aspera.conf file, which is located at /opt/aspera/etc/aspera.conf.
<aaa> <realms> <realm> <users> <user> <name>faspex</name> <authorization> <transfer> <in> <value>token</value> </in> <out> <value>token</value> </out> </transfer> <token> <encryption_key>CRYPTOGRAPHIC_STRONG_RANDOM_STRING</encryption_key> </token> <authorization> <file_system> <access> <paths> <path> <absolute>E:\faspex_packages</absolute> <read_allowed>false</read_allowed> <dir_allowed>false</dir_allowed> <write_allowed>false</write_allowed> </path> </paths> </access> </file_system> </user> </realm> </realms> </aaa>