Re: Announce: MOVEit Freely - Secure Command-Line FTP Client

• Previous message: Security Coordinator: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• In reply to: Security Coordinator: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• Next in thread: David Howe: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• Reply: David Howe: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 8 Apr 2002, Security Coordinator wrote:

> Well, it is pretty easy to SSL tunnel any TCP protocol. In Linux there
> are a few different command line utilities that can proxy an SSH
> connection to a non-ssh one, so there is no particular reason why you
> should HAVE to use their "FTPS" server, unless it has some
> idiotsyncracies in the way it handles SSL.

The problem with ftp is that it uses a separate data channel. You can
tunnel control channel over SSL with no problems, but you'll need some
transparent proxy or daemon code hacking to do both. Not that it can't be
done, but there is no standard way, AFAIK.

-- 
_____________________________________________________
Michal Zalewski [lcamtufat_private] [security]
[http://lcamtuf.coredump.cx] <=-=> bash$ :(){ :|:&};:
=-=> Did you know that clones never use mirrors? <=-=
          http://lcamtuf.coredump.cx/photo/

• Next message: David Howe: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• Previous message: Security Coordinator: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• In reply to: Security Coordinator: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• Next in thread: David Howe: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• Reply: David Howe: "Re: Announce: MOVEit Freely - Secure Command-Line FTP Client"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Apr 08 2002 - 12:55:24 PDT