From owner-freebsd-questions Sun Oct 6 15: 9:16 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1B28137B401 for ; Sun, 6 Oct 2002 15:09:15 -0700 (PDT) Received: from zoon.lafn.org (zoon.lafn.org [206.117.18.9]) by mx1.FreeBSD.org (Postfix) with ESMTP id A1E1B43E3B for ; Sun, 6 Oct 2002 15:09:14 -0700 (PDT) (envelope-from bc979@lafn.org) Received: from lafn.org (66-81-22-208-modem.o1.com [66.81.22.208]) by zoon.lafn.org (8.12.3/8.11.3) with ESMTP id g96M9CBU024229; Sun, 6 Oct 2002 15:09:13 -0700 (PDT) (envelope-from bc979@lafn.org) Date: Sun, 6 Oct 2002 15:09:14 -0700 Subject: Re: Secure FTPd Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v546) Cc: freebsd-questions@freebsd.org To: Socketd From: Doug Hardie In-Reply-To: <20021006.22051000.2959583665@rafter.> Message-Id: <3FC428A9-D978-11D6-A2D9-000393681B06@lafn.org> Content-Transfer-Encoding: 7bit X-Mailer: Apple Mail (2.546) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sunday, Oct 6, 2002, at 15:05 US/Pacific, Socketd wrote: >>>>>>>>>>>>>>>>>>> Original Message <<<<<<<<<<<<<<<<<< > > On 10/6/02, 11:52:16 PM, Doug Hardie wrote regarding > Re: > Secure FTPd: > >> The problem with adding SSL to ftpd is the clients. You would have to >> create an ftp client with SSL added also. ssh's sftp has that >> capability and there are 2 generally available clients - sftp and scp. >> I believe there are clients for most computers. > > Well, all my users use windows and there a some ftp clients that loves > SSL (like CuteFTP). You would have to emulate their SSL interface - which is that provided by ssh's sftpd. It could be done, but would take some research. > >> qpopper provides SSL for POP3 which works with most of the common mail >> clients. You may have to provide a popper port for both 110 and 995 >> in >> order to pick up both the older and newer clients. I have had to >> provide both. > > Ok. Performance-wise all services should run their own SSL support, but > it there one for the default ftpd? Not that I am aware of. Everyone appears to be using ssh. However, it is lacking chroot support. > >> SSL can be used with sendmail. There is a lot of information >> available >> at www.sendmail.org. I have not tried that yet. Its on the list of >> things to do someday. > > Ok, but it is not widely used? No idea. The clients supposedly support it but I have never tried it. > > Br > socketd > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message