Date: Fri, 09 Apr 1999 23:48:23 -0600 From: Brett Glass <brett@lariat.org> To: Wes Peters <wes@softweyr.com> Cc: security@FreeBSD.ORG Subject: Re: Interesting problem: chowning files sent via FTP Message-ID: <4.2.0.32.19990409234113.04621730@localhost> In-Reply-To: <370ED16D.582E4F19@softweyr.com> References: <4.2.0.32.19990409184654.045424d0@localhost> <4.2.0.32.19990409223443.0451c100@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
At 10:19 PM 4/9/99 -0600, Wes Peters wrote: >I'd suggest using a dedicated NIC on both the ftp server and the >printers workstation, if at all possible. Well, actually, the printer will mount the NFS volume through his Netware server. (I only learned recently that this was possible.) So, the link would go to his server. It'd be quite secure still, though, as Netware has good security. > FSP? I never really looked into it that much, it seemed like it was >doomed before it got out of the chute. Seems a shame, too, given that >it was supposedly more reliable than NFS and easier to control than >either NFS or FTP. It was done to counter a Microsoft proposal which likewise went nowhere. Both died due to lack of interest. >One of these days somebody needs to actually implement a mailer that >supports the "external reference" capability of MIME. You know, you >attach a huge file to a mail message, and rather than sending the >file base64 encoded through the email system it sticks it on a secure >public server along with a list of who you've sent it to and an expiration >date. The public server will allow only those who were sent the file to >retrieve it. Once everyone has accessed the file OR the expiration date >has been reached, the file is quietly deleted from the public server. I like that idea. The only trick would be authenticating the users who went to the public drop to pick up the file. You'd need to give them unique keys which they'd have to decode with some secret they had.... Perhaps their RSA private keys. And then re-encrypt with the repository's public key. Hmmm. This gets complicated. --Brett To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.2.0.32.19990409234113.04621730>