SCIENTIFIC-LINUX-USERS Archives

June 2012

SCIENTIFIC-LINUX-USERS@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Please update vsftpd package
From:
jdow <[log in to unmask]>
Reply To:
jdow <[log in to unmask]>
Date:
Fri, 8 Jun 2012 12:21:43 -0700
Content-Type:
text/plain
Parts/Attachments:
text/plain (15 lines) 
On 2012/06/08 05:44, Nico Kadel-Garcia wrote:
>
>And in this day and age with password sniffing going on over
> local networks by zombied machines and happening as a matter of government
> policy worldwide in data centers, and the historic firewall wackiness with FTP's
> 2 channel communications, *WHY* is your client using FTP for anything that is
> password based? You can cross-hook it to normal logins, true, but this is a
> really bad idea for basic security reasons and should be avoided wherever feasible.
> Or are they using FTPS?

rpm -qi vsftpd or yum info vsftpd should answer your question Nico, I
suspect.

{o.o}

ATOM RSS1 RSS2