RE: FTP with authentication to RADIUS

From: Roeland Meyer (no email)
Date: Fri Jan 05 2001 - 03:07:30 EST

• Next message: Brian W.: "Re: FTP with authentication to RADIUS"
• Previous message: Sean Donelan: "Pictures of Schenectady NY CO flood?"
• Maybe in reply to: Michael Medwid: "FTP with authentication to RADIUS"
• Next in thread: Brian W.: "Re: FTP with authentication to RADIUS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

With FTP ... just say "no!".

1) many versions of FTP make you system vulnerable to root cracks.
2) There is NO way to run FTP in a SSH tunnel because it uses dynamic port
assignments.
3) FTP logins are plain-text.

For sharing files, with anonymous users, HTTP is much better (see:
http://files.dnso.net)

> From: Steven J. Sobol [mailto:]
> Sent: Thursday, January 04, 2001 2:35 PM
>
> On Thu, 4 Jan 2001, joshua stein wrote:

> > Michael Medwid wrote:
> > > Anyone know of an FTP server product that hooks into RADIUS for
> > > authentication? NT or Linux?

> > proftpd has more features, but isn't very stable (and has had a few
> > security problems in the past).
>
> It's much less security-hole-ridden than the godforsaken piece-of-crap
> copy of wuftpd that ships with many Linux distros (in

• Next message: Brian W.: "Re: FTP with authentication to RADIUS"
• Previous message: Sean Donelan: "Pictures of Schenectady NY CO flood?"
• Maybe in reply to: Michael Medwid: "FTP with authentication to RADIUS"
• Next in thread: Brian W.: "Re: FTP with authentication to RADIUS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]