How can I allow passive ftp to certain hosts? I know that you can do it by allowing ports 49152-65535 to the host but that isnt very secure, is there a better way?
ftp-proxy is capable of handling it. There's also a 'reverse diff' floating around to enable it to proxy servers (instead of clients). The list archives should have a few discussions on this.
