[KLUG Members] FTP Question

Daniel Szalay members@kalamazoolinux.org
Thu, 10 Jan 2002 06:30:18 -0500

Previous message: [KLUG Members] Re: Slow graphics -- nVidia card + nVidia drivers
Next message: [KLUG Members] FTP Question
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I have a user that is trying to FTP files to a web site. The site uses
passive FTP, which means after establishing a connection over port 21, it
tries to open a subsequent connection on a random port from the unassigned
blocks in the registered port range (1024 to 49151). The problem I'm having
is I have to configure the proxy server (MS Proxy) to allow ALL of the
unassigned port ranges for this to work (since it appears the admin of the
web site has not limited the connection range his/her server will use).
That's a lot of ports.

I'm wondering if there are any security concerns (allowing the random
selection of these ports), even though these are outbound connections that
are opened only by (and after) a legitimate FTP session is established. Not
to mention it's a lot of work entering all of the port groups.

Thanks.

Daniel Szalay

Previous message: [KLUG Members] Re: Slow graphics -- nVidia card + nVidia drivers
Next message: [KLUG Members] FTP Question
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]