Date: Sun, 4 Apr 2021 00:16:38 +0200 From: Marek Zarychta <zarychtam@plan-b.pwste.edu.pl> To: freebsd-stable@freebsd.org Subject: Re: Deprecating base system ftpd? Message-ID: <3d511b27-055c-3049-f61a-d0c77ec7edcb@plan-b.pwste.edu.pl> In-Reply-To: <YTXPR0101MB0976FA37DCF136D9269A66F7DD799@YTXPR0101MB0976.CANPRD01.PROD.OUTLOOK.COM> References: <CAPyFy2AbP2X339zbemZ9Y8edjNKdyygnR9mH48Q78nxwDtOBAg@mail.gmail.com> <eda59707-46cf-d7c1-512e-39a141cfda61@grosbein.net> <YTXPR0101MB0976FA37DCF136D9269A66F7DD799@YTXPR0101MB0976.CANPRD01.PROD.OUTLOOK.COM>
next in thread | previous in thread | raw e-mail | index | archive | help
W dniu 03.04.2021 o 23:30, Rick Macklem pisze: > Eugene Grosbein wrote: >> 04.04.2021 3:39, Ed Maste wrote: >> >>> I propose deprecating the ftpd currently included in the base system >>> before FreeBSD 14, and opened review D26447 >>> (https://reviews.freebsd.org/D26447) to add a notice to the man page. >>> I had originally planned to try to do this before 13.0, but it dropped >>> off my list. FTP is not nearly as relevant now as it once was, and it >>> had a security vulnerability that secteam had to address. >>> >>> I'm happy to make a port for it if anyone needs it. Comments? >> I'm strongly against remove of stock ftpd. FTP is fastest protocol for both testing >> and daily file transfer for trusted isolated segments, and even for WAN wrapped in IPSec. >> >> Our stock ftpd has very short backlog of security issues comparing with other FTP server implementations, >> mostly linked with libc or other libraries and not with ftpd code itself. >> >> Please don't fix what ain't broken. Please. > I'll +1 this. > > I find ftpd very handy on my local lan (for example, Windoze has an ftp client). > Since it isn't enabled by default, I don't see it as a security concern. > > rick +1 It's a really valuable daemon and without it in the base, FreeBSD won't be the same network operating system anymore. Both ftpd and tftpd from the base do their job well, both are handy and pretty straightforward co to configure, disabled by default and the mourning after the loss of any of them will last long. I know, it's not the same ftpd which served at ftp.cdrom.com back in time but from the ordinary user's point of view, it's considered as an inherent part of FreeBSD. With kind regards, -- Marek Zarychta
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3d511b27-055c-3049-f61a-d0c77ec7edcb>