if you want hide your password you can use FTPES - FTP over explicit TLS/SSL. But some firewalls don't allow after to transfer data because they cannot open the data channel as they cannot analyse the ftp commands PORT or PASV.
With the CCC command, you can log with encypted password and then disable TLS/SSL.
But this command is not supported by the FileZilla server and client.
is it possible to add it?
Thanks
support of the CCC command
Moderator: Project members
-
- 500 Command not understood
- Posts: 4
- Joined: 2009-04-15 12:39
- First name: Lucky
- Last name: Luc
Re: support of the CCC command
Configure those routers and firewalls according to the Network Configuration guide.
-
- 504 Command not implemented
- Posts: 8
- Joined: 2009-06-24 07:07
- First name: Claudio
- Last name: Zanon
Re: support of the CCC command
...but I do not want to open firewalls for all the connections: I can not ask it to security office people!botg wrote:Configure those routers and firewalls according to the Network Configuration guide.
I configured the server to be RFC4217 compliant, since I found the improvement of CCC command the one which let me reach all the requirements I have; but now I have to find a client that use it, and if FileZilla have it, it will be great!
(Any hint on what to change, what check? speaking to someone C understand)
Thanks for your work.
Re: support of the CCC command
CCC is too great of a security risk.
Re: support of the CCC command
Why is CCC risky? It keeps user credentials encrypted.
Re: support of the CCC command
But as soon as you do CCC, every attacker could simply steal your authenticated session and access all your files on the server.