From owner-freebsd-current@freebsd.org Thu Sep 17 15:19:44 2020 Return-Path: Delivered-To: freebsd-current@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 8670C3E3E69 for ; Thu, 17 Sep 2020 15:19:44 +0000 (UTC) (envelope-from sobomax@sippysoft.com) Received: from mail-ej1-f50.google.com (mail-ej1-f50.google.com [209.85.218.50]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Bsgcb3blgz47QN for ; Thu, 17 Sep 2020 15:19:43 +0000 (UTC) (envelope-from sobomax@sippysoft.com) Received: by mail-ej1-f50.google.com with SMTP id e23so3858086eja.3 for ; Thu, 17 Sep 2020 08:19:43 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=VLxUh+TmCY/PspVLnxAWh3YVgiFQsWusBrsbL7OnqPI=; b=NN3Y1UiNLoqKToI87wtAYzCDAVDJuX3MythshDqW0tZFI+WZHPc6AFJXQOgWnEVvhr dNF0ijdFPgxelKMq5ygx5JFN/HZgTRppvlUQP69t48NdTXoJRolfm8vNepO9ZLeYFzTi /w6cgvINT2ywH1E0Q9KN1TURMn3uLWJ7WQzWnTidaVhuIl/ChJiPuBDHEEzdCs1+Ri38 Kqy9OsEOv6YnqDj41RrjJrW4jpvcjdQbPr5gX1kAtOhU6r2W0K4wLLBHqISBCz8FABr0 zOAPTWZWrVKskuMU/DNjCyy2MVQVKx+B86NzOsyyg0jN/caSWZFqCRYgpYUGi3TH9AJ7 YNmw== X-Gm-Message-State: AOAM5320WZLtEw5UNDb/luKIcnnt7OnU+bBw/7I/Ht7/bFMu7soevknA L77pqhcL8bvAZkMX5ccUCyjr2efFcBjXaYqz0yQpsB7zs+s= X-Google-Smtp-Source: ABdhPJxuBxFmp9bLgEL8Csb3iYczLClzAmy8LrC7/02hDwypnONUa4IUx2pPtUmbd0HjNACzmVHVyAjl2Yi186x+tOw= X-Received: by 2002:a17:906:60d5:: with SMTP id f21mr30993776ejk.94.1600355980998; Thu, 17 Sep 2020 08:19:40 -0700 (PDT) MIME-Version: 1.0 References: <202009171404.08HE4fZj007939@slippy.cwsent.com> In-Reply-To: <202009171404.08HE4fZj007939@slippy.cwsent.com> From: Maxim Sobolev Date: Thu, 17 Sep 2020 08:19:29 -0700 Message-ID: Subject: Re: Deprecating ftpd in the FreeBSD base system? To: Cy Schubert Cc: Ed Maste , FreeBSD Current X-Rspamd-Queue-Id: 4Bsgcb3blgz47QN X-Spamd-Bar: - X-Spamd-Result: default: False [-1.52 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.93)[-0.927]; FREEFALL_USER(0.00)[sobomax]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; R_SPF_ALLOW(-0.20)[+ip4:209.85.128.0/17:c]; RCVD_TLS_ALL(0.00)[]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-current@freebsd.org]; DMARC_NA(0.00)[freebsd.org]; RWL_MAILSPIKE_GOOD(0.00)[209.85.218.50:from]; NEURAL_HAM_LONG(-1.04)[-1.040]; SUBJECT_ENDS_QUESTION(1.00)[]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.55)[-0.550]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[209.85.218.50:from]; FORGED_SENDER(0.30)[sobomax@freebsd.org,sobomax@sippysoft.com]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:15169, ipnet:209.85.128.0/17, country:US]; FROM_NEQ_ENVFROM(0.00)[sobomax@freebsd.org,sobomax@sippysoft.com]; MAILMAN_DEST(0.00)[freebsd-current]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Sep 2020 15:19:44 -0000 Re: removing HTTP client please no!!! The current drive to "outlaw" HTTP coming from companies who see all world via web browser. Totally ignoring the fact that HTTP != HTTPS in particular in cases where reliability and lower complexity of the system takes precedence over on-the-wire protocol security. For example, many internal APIs of AWS EC2 are HTTP. -Max On Thu., Sep. 17, 2020, 7:04 a.m. Cy Schubert, wrote: > In message > om> > , Ed Maste writes: > > FTP is (becoming?) a legacy protocol, and I think it may be time to > > remove the ftp server from the FreeBSD base system - with the recent > > security advisory for ftpd serving as a reminder. > > > > I've proposed adding a deprecation notice to the man page in > > https://reviews.freebsd.org/D26447 to start this off. There are a > > number of ftp servers in ports, and if we're going to remove the base > > system one we can create a port for it first, as well. > > > > Any comments or concerns, please follow up in the code review or in > email her > > e. > > We should also deprecate the FTP client. > > I've been advocating removing FTP (and HTTP) from libfetch as well. People > should be using HTTPS only. (libfetch could support a plugin that might be > supplied by a port should someone be inclined to write one.) > > FTP is firewall unfriendly. > > The F5 gateway at $JOB does not support FTP. When we still worked at the > office I had to take my $JOB laptop to the coffee shop to use their > wireless to download patches from Broadcom's FTP site. Now that I WFH (we > won't ever go back to the office) I download while disconnected from the > VPN. > > Then move the removed bits to ports, which I think we already have in > tnftp > and tnftpd. > > > -- > Cheers, > Cy Schubert > FreeBSD UNIX: Web: https://FreeBSD.org > NTP: Web: https://nwtime.org > > The need of the many outweighs the greed of the few. > > > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org" > >