Browse by Tags

All Tags » FTP (RSS)
Wed, Nov 18 2009 21:02

My take on the SSL MITM Attacks – part 3 – the FTPS attacks

[Note - for previous parts in this series, see Part 1 and Part 2 .] FTP, and FTP over SSL, are my specialist subject, having written one of the first FTP servers for Windows to support FTP over SSL (and the first standalone FTP server for Windows!) Rescorla...
Posted by Alun Jones | with no comments
Filed under: , , , ,
Mon, Jul 13 2009 23:48

How FTP Data Connections Work Part 2 (OR: Fun With Port 20)

As we mentioned in the 1st part of this series , FTP is a more complex protocol than many, using one control connection and one data connection. A recap of the first post… In typical Stream Mode operation, a new data connection is opened and closed for...
Posted by Alun Jones | 1 comment(s)
Filed under: , , ,
Wed, Jul 8 2009 23:18

How FTP Data Connections Work Part 1 (OR: Don’t Open Port 20 in your Firewall!)

This will be the first of a couple of articles on FTP, as I’ve been asked to post this information in an easy-to-read format in a public place where it can be referred to. I think my expertise in developing and supporting WFTPD and WFTPD Pro allow me...
Posted by Alun Jones | 9 comment(s)
Filed under: , , , ,
Tue, Jul 29 2008 21:53

FTP - Untrustworthy? I Don't Think So!

Lately, as if writers all draw from the same shrinking paddling-pool of ideas, I've noticed a batch of stories about how unsafe, unsecure and untrustworthy is FTP. SC Magazine says so. First it was an article in the print version of SC Magazine ,...
Posted by Alun Jones | 2 comment(s)
Filed under: , , ,
Thu, Jul 10 2008 22:07

Vistafy Me.

I have a little time over the next couple of weeks to devote to developing WFTPD a little further. This is a good thing, as it's way past time that I brought it into Vista's world. I've been very proud that over the last several years, I have...
Posted by Alun Jones | 6 comment(s)
Filed under: , , , ,
Thu, Jan 24 2008 21:19

Vista's Secret Windows Firewall hole

First, the good news - it's not a flaw in the operation of Windows Firewall on Windows Vista. It's a design feature, it makes sense, and it fits in with the principle that the firewall should keep out unsolicited traffic. It's not really a...
Posted by Alun Jones | 3 comment(s)
Filed under: , , ,
Sun, Sep 17 2006 21:37

What should I do now I can compete?

My departure from Microsoft is very nearly reaching its first anniversary. As befits someone approaching that milestone, my thoughts drift to ... the non-compete clause. That's the niggling part of the contract every Microsoft employee signs, and which...
Posted by Alun Jones | 1 comment(s)
Filed under: , ,
Mon, Jun 26 2006 20:52

I wish Larry hadn't written that...

Oh, Larry, Larry, Larry... Articles 1 and 2 were great - really necessary reading to a lot of would-be network programmers. But article 3... where to start with the corrections? I'm not going to. It's an article you shouldn't read, because you're not...
Posted by Alun Jones | with no comments
Filed under: ,
Mon, May 8 2006 17:01

DELAY or NODELAY - Riffing on Larry, who's riffing on Raymond...

[Why is this under "Programmer Hubris"? Because it's about developers who find "an easy fix" and apply it, without trying to figure out why it made things appear to work better.] I like to read Larry Osterman and Raymond Chen's blogs, because they've...
Posted by Alun Jones | 13 comment(s)
Filed under: ,
Thu, Nov 3 2005 15:05

"FTPS" document finally makes it to RFC status.

News I've been waiting for for years - the document formally known as draft-murray-auth-ftp-ssl-16.txt has finally been released by the RFC editor as RFC 4217 - “ Securing FTP with TLS ” What exactly does this mean? Technically, not very much - FTPS has...
Posted by Alun Jones | 1 comment(s)
Filed under: ,