From owner-freebsd-stable@freebsd.org Mon Apr 5 16:01:02 2021 Return-Path: Delivered-To: freebsd-stable@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5A09D5BDBC3 for ; Mon, 5 Apr 2021 16:01:02 +0000 (UTC) (envelope-from lyndon@orthanc.ca) Received: from orthanc.ca (orthanc.ca [208.79.93.154]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA512 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "orthanc.ca", Issuer "R3" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4FDb3x29NQz4m13 for ; Mon, 5 Apr 2021 16:01:01 +0000 (UTC) (envelope-from lyndon@orthanc.ca) Received: from orthanc.ca (localhost [127.0.0.1]) by orthanc.ca (OpenSMTPD) with ESMTP id 80567892; Mon, 5 Apr 2021 09:00:54 -0700 (PDT) From: "Lyndon Nerenberg (VE7TFX/VE6BBM)" To: Ruben van Staveren cc: freebsd-stable stable Subject: Re: Deprecating base system ftpd? In-reply-to: <38DE0531-1572-43DD-BA53-ECB3EF52FA3F@verweg.com> References: <38DE0531-1572-43DD-BA53-ECB3EF52FA3F@verweg.com> Comments: In-reply-to Ruben van Staveren via freebsd-stable message dated "Mon, 05 Apr 2021 14:10:09 +0200." MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <39796.1617638454.1@orthanc.ca> Date: Mon, 05 Apr 2021 09:00:54 -0700 Message-ID: X-Rspamd-Queue-Id: 4FDb3x29NQz4m13 X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of lyndon@orthanc.ca designates 208.79.93.154 as permitted sender) smtp.mailfrom=lyndon@orthanc.ca X-Spamd-Result: default: False [-0.68 / 15.00]; SUBJECT_ENDS_QUESTION(1.00)[]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RBL_DBL_DONT_QUERY_IPS(0.00)[208.79.93.154:from]; R_SPF_ALLOW(-0.20)[+ip4:208.79.93.154]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[orthanc.ca]; NEURAL_SPAM_SHORT(0.62)[0.622]; SPAMHAUS_ZRD(0.00)[208.79.93.154:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:25795, ipnet:208.79.88.0/21, country:US]; MAILMAN_DEST(0.00)[freebsd-stable] X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Apr 2021 16:01:02 -0000 Ruben van Staveren via freebsd-stable writes: > It is time to deprecate ftp altogether, and any other protocols that = > embed protocol information in layer 7, thus hurting any #IPv6 migration = > and deployment technology (SIIT-DC e.g). > ftp, a protocol not using TLS protection [...] You seem to be a couple of decades behind the times. RFC4217 (Securing FTP with TLS) was published on 2005. IPv6 suopport dates back to 1998 in RFC 2428 (FTP Extensions for IPv6 and NATs). It would be nice if the base system ftpd grew TLS support. OpenBSD has had this for years. --lyndon