Date: Mon, 05 Apr 2021 17:28:09 +0200 (CEST) From: sthaug@nethelp.no To: Cy.Schubert@cschubert.com Cc: emaste@freebsd.org, freebsd-stable@freebsd.org Subject: Re: Deprecating base system ftpd? Message-ID: <20210405.172809.200436441.sthaug@nethelp.no> In-Reply-To: <202104051444.135EixF6025306@slippy.cwsent.com> References: <CAPyFy2AbP2X339zbemZ9Y8edjNKdyygnR9mH48Q78nxwDtOBAg@mail.gmail.com> <202104051444.135EixF6025306@slippy.cwsent.com>
next in thread | previous in thread | raw e-mail | index | archive | help
>> I propose deprecating the ftpd currently included in the base system >> before FreeBSD 14, and opened review D26447 >> (https://reviews.freebsd.org/D26447) to add a notice to the man page. >> I had originally planned to try to do this before 13.0, but it dropped >> off my list. FTP is not nearly as relevant now as it once was, and it >> had a security vulnerability that secteam had to address. > > I think this is an excellent start. My shopping list includes: > > - remove ftp(1) > - remove ftpd(8) > - remove telnet(1) > - remove telnetd(8) My preference would be to leave those four in the system. However, I can live with removal, as long as they are available as ports. > - remove ftp:// and http:// from libfetch. This is 2021 and we should all > use https://. Please don't. There is still a lot of content not available over https (and quite a few web sites with only "readonly" type content). Removal of ftp:// and http:// from libfetch simply means I'll have to install wget instead - and we're getting ever close to FreeBSD being only a kernel. > - replace DNS lookups with DoH and/or DoT. Why let your ISP see your DNS > traffic? Because I trust my (European) ISP significantly more than I trust big US companies? Yes, I have a pretty good idea what Cloudflare, Google etc have said about the queries they receive. I still don't see a reason to trust them, given their actions in other areas. Bert Hubert has written much better then I can about moving everything to DoH/DoT: https://blog.powerdns.com/2019/09/25/centralised-doh-is-bad-for-privacy-in-2019-and-beyond/ Steinar Haug, Nethelp consulting, sthaug@nethelp.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20210405.172809.200436441.sthaug>