FTP
Click on the red underlined text to get to the source
... Services tend to rush like waves over the Internet. Over the years
many sites have established anonymous FTP servers, gopher servers,
wais servers, WWW servers, etc. as they became popular, but not
...
... Services provided
on the same machine can interact in catastrophic ways. For example,
allowing anonymous FTP on the same machine as the WWW server may
allow an intruder to place a file in the anonymous FTP area and cause
...
... allowing anonymous FTP on the same machine as the WWW server may
allow an intruder to place a file in the anonymous FTP area and cause
the HTTP server to execute it.
...
... service deserves some special consideration, and
that is anonymous, or guest, access. This may be either anonymous
FTP or guest (unauthenticated) login. It is extremely important to
ensure that anonymous FTP ...
... FTP or guest (unauthenticated) login. It is extremely important to
ensure that anonymous FTP servers and guest login userids are
carefully isolated from any hosts ...
... service (i.e., general services, such as Telnet and FTP, should not
be allowed by anyone other than administrators).
...
... TFTP both allow users to receive and send electronic files in
a point-to-point manner. However, FTP requires authentication while
TFTP ...
...
Improperly configured FTP servers can allow intruders to copy,
replace and delete files at will, anywhere on a host ...
... security holes that can occur when
the service is configured incorrectly. FTP servers should reside on
their own host. Some sites choose to co-locate FTP ...
... FTP servers should reside on
their own host. Some sites choose to co-locate FTP with a Web
server, since the two protocols share common security considerations
...
... Web
server, since the two protocols share common security considerations
However, the the practice isn't recommended, especially when the FTP
service allows the deposit ...
... TFTP does not support the same range of functions as FTP, and has no
security whatsoever. This service ...
... SMTP-servers), for other services (e.g., Telnet, FTP,
etc.), proxy servers can be used to allow access to the resources
...
... specific protocols and can be configured to block
only subsections of the protocol. For example, an ALG for FTP can
tell the difference between the "put" command and the "get" command;
an organization may wish to allow users to "get" files from the
...
... By contrast, a filtering router could either block all FTP access, or
none, but not a subset.
...
... The practical side of Kerberos is its integration with the
application level. Typical applications like FTP, telnet, POP, and
...
... CERT advisory archives are available via anonymous FTP from
info.cert.org in the /pub/cert_advisories directory.
...
... guidelines, see the file "virus-l.README",
available via anonymous FTP on info.cert.org
in the /pub/virus ...