Date: Thu, 17 Sep 2020 12:45:43 -0700 From: John-Mark Gurney <jmg@funkthat.com> To: Warner Losh <imp@bsdimp.com> Cc: Cy Schubert <Cy.Schubert@cschubert.com>, Ed Maste <emaste@freebsd.org>, FreeBSD Current <freebsd-current@freebsd.org> Subject: Re: Deprecating ftpd in the FreeBSD base system? Message-ID: <20200917194543.GX4213@funkthat.com> In-Reply-To: <CANCZdfrt6xczM6M5z_ZtVybKz9CG_kmiEApMrfSriFDe4JVTTw@mail.gmail.com> References: <CAPyFy2BHki84KuzP94AqTLk7v9FTAnLP-sa4HaFLq0kdxt0dEQ@mail.gmail.com> <202009171404.08HE4fZj007939@slippy.cwsent.com> <CANCZdfrt6xczM6M5z_ZtVybKz9CG_kmiEApMrfSriFDe4JVTTw@mail.gmail.com>
index | next in thread | previous in thread | raw e-mail
Warner Losh wrote this message on Thu, Sep 17, 2020 at 10:08 -0600:
> On Thu, Sep 17, 2020 at 8:05 AM Cy Schubert <Cy.Schubert@cschubert.com>
> wrote:
>
> > I've been advocating removing FTP (and HTTP) from libfetch as well. People
> > should be using HTTPS only. (libfetch could support a plugin that might be
> > supplied by a port should someone be inclined to write one.)
>
> The project isn't going to do that. "tools not policy" dictates that
> anything like that should be done in fetch(1) and likely only as a command
> line option for people that require a secure connection (or that can
> tolerate an insecure one).
Do we have a way for the admin/root to set fetch's policy to block FTP
and HTTP?
--
John-Mark Gurney Voice: +1 415 225 5579
"All that I will do, has been done, All that I have, has not."
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20200917194543.GX4213>