Rule set for FTP client using server mode(NOT passive mode)?

Discussion in 'LnS English Forum' started by greenze, Mar 29, 2003.

Thread Status:
Not open for further replies.
  1. greenze
    Offline

    greenze Registered Member

    Try to figure out ....... o_OFTP client hangs on the list files stage .......
  2. greenze
    Offline

    greenze Registered Member

    sorry im refering to active FTP ........rule set ...
  3. Ph33r
    Online

    Ph33r Guest

    The Idea of using Passive FTP is to avoid creating Rules for Temp Range Access src=1025=5000, dst=1025=5000 for Remote Access… You rather just not be using a Software Firewall at all… ;)
  4. Patrice
    Offline

    Patrice Registered Member

    Hi greenze!

    Can you give us more information about you FTP client? Which one are you using (version)? Again you need to know which ports the software is using. Maybe you find some information on their homepage (Support, Community,...). But we still can help you if you give us further information.

    By the way I disagree clearly with Ph33r. If he's using a router, then he is quite safe. If he doesn't use a router nor a firewall, he is an easy target for hackers! Never forget about that Ph33r!

    Best regards!

    Patrice
  5. Ph33r
    Online

    Ph33r Guest

    Patrice

    I’m behind a Router doesn’t necessary mean I’m protected, in-fact I’m not because I have DMZ set on me… And there are many Routers which doesn’t contain Hardware Firewall Capabilities… So don’t you forget about that!
  6. Ph33r
    Online

    Ph33r Guest

    In Addition; What I had posted here was valid, but hey if you “disagree clearly” then someone better start learning about “Passive Mode”, how it ticks…
  7. Patrice
    Offline

    Patrice Registered Member

    Hi Ph33r!

    I didn't want to offend you at all! I just wanted to make you think. You're completely right, that there are routers which aren't safe at all. If you would have read my comment carefully, you would have noticed that I wrote "... quite safe...".

    But you certainly agree, that the more defensive layers you have, the more safe you are. But we should never forget that there's no 100% security.

    Greetings!

    Patrice
  8. Ph33r
    Online

    Ph33r Guest

    Depends on what you in Reference too, whether it’s Remote Attempts or?
    Tell that to my Rule-set which doesn’t stop blocking any Remote Packets whether it’s over Known or unknown IP or Non-IP Protocols nothing remotely started gets in…
Thread Status:
Not open for further replies.