Date: Sat, 1 Apr 2000 17:02:17 -0600 (CST) From: James Wyatt <jwyatt@rwsystems.net> To: Nate Williams <nate@yogotech.com> Cc: Andre Gironda <andre@sun4c.net>, Jim Durham <durham@w2xo.pgh.pa.us>, freebsd-security@FreeBSD.ORG Subject: Re: FTP with firewall rules Message-ID: <Pine.BSF.4.10.10004011657120.71006-100000@bsdie.rwsystems.net> In-Reply-To: <200004011856.LAA04865@nomad.yogotech.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 1 Apr 2000, Nate Williams wrote: > > export/setenv http_proxy! > > Huh? > > > of course, you have to find all of the distfiles manually, since only > > about 4% of them have an http site to download the source from. > > That's irrelevant. You can still download *ALL* of them via > passive-mode ftp. I have yet to find a site that didn't let me download > with ftp in passive mode, so if you are *truly* interested in security, > then you certainly don't want to open up so people can use active-mode > ftp from behind your firewall. Andre said his was a special case and that "it works though, but i doubt it's what you are looking for. i had to do this behind a firewall/proxy architecture that did not allow ftp." I took it to mean "*he* *has* to use HTTP to fetch because his firewall doesn't support *any* ftp" and that if there is some problem with active FTP it might still work. - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.10004011657120.71006-100000>