From owner-freebsd-security Tue Jun 12 13:28:19 2001 Delivered-To: freebsd-security@freebsd.org Received: from diarmadhi.mushhaven.net (diarmadhi.mushhaven.net [209.16.107.11]) by hub.freebsd.org (Postfix) with ESMTP id CC0CB37B401 for ; Tue, 12 Jun 2001 13:28:00 -0700 (PDT) (envelope-from mistwolf@diarmadhi.mushhaven.net) Received: (from mistwolf@localhost) by diarmadhi.mushhaven.net (8.11.3/8.11.0) id f5CKRnH73676; Tue, 12 Jun 2001 16:27:49 -0400 (EDT) (envelope-from mistwolf) Date: Tue, 12 Jun 2001 16:27:49 -0400 From: Jamie Norwood To: "Antoine Beaupre (LMC)" Cc: freebsd-security@FreeBSD.ORG Subject: Re: IPFW almost works now. Message-ID: <20010612162749.A73655@mushhaven.net> References: <657B20E93E93D4118F9700D0B73CE3EA0166D97D@goofy.epylon.lan> <20010612152856.A72299@mushhaven.net> <3B267827.5090002@lmc.ericsson.se> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit User-Agent: Mutt/1.2.5i In-Reply-To: <3B267827.5090002@lmc.ericsson.se>; from Antoine.Beaupre@ericsson.ca on Tue, Jun 12, 2001 at 04:14:31PM -0400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tue, Jun 12, 2001 at 04:14:31PM -0400, Antoine Beaupre (LMC) wrote: > Jamie Norwood wrote: > > > On Tue, Jun 12, 2001 at 12:25:33PM -0700, Jason DiCioccio wrote: > > > >>Welcome to the shitty protocol that is: FTP. To use active ftp, you > >>need to allow connections to all inbound ports above 1024. To allow > >>passive FTP, you need to allow outbound connections to all ports > >>above 1024. FTP is obsolete, too bad everyone still uses it though. > > > > What do you recommend? SFTP? > > > IIRC, there's a nice protocol called HTTP that does not have ftp's limitations. ;) No, it has a host of limitations all it's own, not the least of which is that is is actually less efficient at transfering files, and that it has limited CLI tools. Remember, not every computer has a monitor, mouse, and web browser! I would love to see something quality replace FTP. Maybe SFTP will, but it is still young, and if SSH is any indication, the onlt commercial support for it will be very expensive (IE, SecureCRT/SecureFX at about $100 each). Yeah, I know about PuTTY,but I don't like it. :) Jamie > A. > > -- > La sémantique est la gravité de l'abstraction. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message