What security implications are there? The passive data sends are outbound ports; the inbound port is still 21. If there are reasons for limiting the outbound passive ftp data ports, then those same reasons would apply to web browser http traffic as well, right? Web browsers do the same thing passive ftp does; use the next available outbound tcp/ip port for communication.
-Jeff
At 08:46 AM 02/01/2003 -0500, Kevin Anderson wrote:
Tod,
For security reasons, is there a way to designate the range of ports that the ftp server would choose.
That way you can model your firewall rules to allow 4000-4500, for example, for FTP and not have to leave open such a large range.
Thanks, Kevin
------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/
