From owner-freebsd-current@freebsd.org Thu Sep 17 14:04:49 2020 Return-Path: Delivered-To: freebsd-current@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id AC1DA3E1469 for ; Thu, 17 Sep 2020 14:04:49 +0000 (UTC) (envelope-from cy.schubert@cschubert.com) Received: from smtp-out-no.shaw.ca (smtp-out-no.shaw.ca [64.59.134.13]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "Client", Issuer "CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Bsdy72HM5z42Lm; Thu, 17 Sep 2020 14:04:46 +0000 (UTC) (envelope-from cy.schubert@cschubert.com) Received: from spqr.komquats.com ([70.67.125.17]) by shaw.ca with ESMTPA id IuWgkPjLIs3D6IuWhkSRJt; Thu, 17 Sep 2020 08:04:44 -0600 X-Authority-Analysis: v=2.4 cv=bZHV7MDB c=1 sm=1 tr=0 ts=5f636cfd a=VFtTW3WuZNDh6VkGe7fA3g==:117 a=VFtTW3WuZNDh6VkGe7fA3g==:17 a=xqWC_Br6kY4A:10 a=kj9zAlcOel0A:10 a=reM5J-MqmosA:10 a=6I5d2MoRAAAA:8 a=YxBL1-UpAAAA:8 a=EkcXrb_YAAAA:8 a=LRFxdfK2jy3J0fLttvUA:9 a=QzgSAXtHoCJlvbBI:21 a=_j66ZYfVkM3nPhkY:21 a=CjuIK1q_8ugA:10 a=IjZwj45LgO3ly-622nXo:22 a=Ia-lj3WSrqcvXOmTRaiG:22 a=LK5xJRSDVpKd5WXXoEvA:22 Received: from slippy.cwsent.com (slippy [IPv6:fc00:1:1:1::5b]) by spqr.komquats.com (Postfix) with ESMTPS id 12AEFE4D; Thu, 17 Sep 2020 07:04:41 -0700 (PDT) Received: from slippy (localhost [127.0.0.1]) by slippy.cwsent.com (8.16.1/8.16.1) with ESMTP id 08HE4fZj007939; Thu, 17 Sep 2020 07:04:41 -0700 (PDT) (envelope-from Cy.Schubert@cschubert.com) Message-Id: <202009171404.08HE4fZj007939@slippy.cwsent.com> X-Mailer: exmh version 2.9.0 11/07/2018 with nmh-1.7.1 Reply-to: Cy Schubert From: Cy Schubert X-os: FreeBSD X-Sender: cy@cwsent.com X-URL: http://www.cschubert.com/ To: Ed Maste cc: FreeBSD Current Subject: Re: Deprecating ftpd in the FreeBSD base system? In-reply-to: References: Comments: In-reply-to Ed Maste message dated "Wed, 16 Sep 2020 13:34:02 -0400." Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 17 Sep 2020 07:04:41 -0700 X-CMAE-Envelope: MS4xfAjxnUplXzqGXfW5WfFhaNES0VXRR6E0/aWXmcuKUNyTfSN5XVYQFmn1pUmF3NDTVCegXBTfhxEEiZ/R+Vx72OQdctnIaaFIqsShfgbjGv6XeR4TTub0 V+FqDpQ7M/zeOEAfXUpdCU09Q9B8KnKoM0IKvfxP/QkbGsFXWeBMNjaCnoea+kIfQR0jYflR5eUlwPRnC4JFA6061gNDC9/s6jwkBa6mfFGUCwp7JVIzliZ9 IZ185jqlXxiyMTCwwbb+dQ== X-Rspamd-Queue-Id: 4Bsdy72HM5z42Lm X-Spamd-Bar: ++++ X-Spamd-Result: default: False [4.25 / 15.00]; HAS_REPLYTO(0.00)[Cy.Schubert@cschubert.com]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; RECEIVED_SPAMHAUS_PBL(0.00)[70.67.125.17:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:6327, ipnet:64.59.128.0/20, country:CA]; SUBJECT_ENDS_QUESTION(1.00)[]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.65)[0.650]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[cschubert.com: no valid DMARC record]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.56)[0.561]; RCVD_IN_DNSWL_LOW(-0.10)[64.59.134.13:from]; NEURAL_SPAM_LONG(0.74)[0.740]; R_SPF_NA(0.00)[no SPF record]; MAILMAN_DEST(0.00)[freebsd-current] X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Sep 2020 14:04:49 -0000 In message , Ed Maste writes: > FTP is (becoming?) a legacy protocol, and I think it may be time to > remove the ftp server from the FreeBSD base system - with the recent > security advisory for ftpd serving as a reminder. > > I've proposed adding a deprecation notice to the man page in > https://reviews.freebsd.org/D26447 to start this off. There are a > number of ftp servers in ports, and if we're going to remove the base > system one we can create a port for it first, as well. > > Any comments or concerns, please follow up in the code review or in email her > e. We should also deprecate the FTP client. I've been advocating removing FTP (and HTTP) from libfetch as well. People should be using HTTPS only. (libfetch could support a plugin that might be supplied by a port should someone be inclined to write one.) FTP is firewall unfriendly. The F5 gateway at $JOB does not support FTP. When we still worked at the office I had to take my $JOB laptop to the coffee shop to use their wireless to download patches from Broadcom's FTP site. Now that I WFH (we won't ever go back to the office) I download while disconnected from the VPN. Then move the removed bits to ports, which I think we already have in tnftp and tnftpd. -- Cheers, Cy Schubert FreeBSD UNIX: Web: https://FreeBSD.org NTP: Web: https://nwtime.org The need of the many outweighs the greed of the few.