Date: Mon, 2 Jan 2006 10:26:43 -0500 From: "fbsd_user" <fbsd_user@a1poweruser.com> To: "zhane H" <zhane1@gmail.com>, <questions@FreeBSD.org> Subject: RE: IPFW> FTP Message-ID: <MIEPLLIBMLEEABPDBIEGMEOLHKAA.fbsd_user@a1poweruser.com> In-Reply-To: <54103ab80601011739u1c7deb6as330b65208011424d@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Because the FTP protocol is very primitive and was created before security was a concern. native FTP in active mode requires you to open all the high order ports. This is a well known security hole and its used to penetrate your system. IPFW does not have way to close this hole so the handbook IPFW examples do not include FTP. IPFW was design to force users to use scp command (secure shell) protocol for FTP & Telnet. Read the handbook for Ipfilter it has way to secure native FTP. -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of zhane H Sent: Sunday, January 01, 2006 8:39 PM To: questions@FreeBSD.org Subject: IPFW> FTP hello i had a minor question/concern i was wondering why does the firewall rulesets have permissions for everything, and help for running almosty anything and how to open and wich port to open but yet it has no exmpale ruleset or any help for using a FTP while using a firewall such as IPFW. it has no help in the handbook period. on how to use ftp while using IPFW i think someone must check this and try to add it in. please _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?MIEPLLIBMLEEABPDBIEGMEOLHKAA.fbsd_user>