David A. Bandel wrote:
On Wed, 18 Jun 2003 17:01:36 -0500
Jason Joines [EMAIL PROTECTED] wrote:
[snip]
$ipchains -A input -s $anyhost -d $thishost 1024:65535 -p tcp -i eth0
! -y -j ACCEPT
The users have IE x.x on win2k. I had one of them try to retrieve a
file via the win2k command line
On Thu, 19 Jun 2003 15:30:38 -0500
Jason Joines [EMAIL PROTECTED] wrote:
David A. Bandel wrote:
[snip]
OK, if I remember correctly, policy is set this way (been a _long_ while
since I've used ipchains):
ipchains -P input DENY
may not be exactly correct, but I know you need -P for policy.
I inherited (old admin left, boss said this is yours) a RH 6.2
server that runs a web application via apache and mysql. It generates a
link that points to an ftp URL to retrieve spreadsheets. The URL is
something like ftp://user:[EMAIL PROTECTED]/filename.xls. I had put up an
ipchains
On Wednesday 18 June 2003 18:01, Jason Joines wrote:
I inherited (old admin left, boss said this is yours) a RH 6.2
server that runs a web application via apache and mysql. It generates a
link that points to an ftp URL to retrieve spreadsheets. The URL is
something like ftp://user:[EMAIL
There may be a firewall module that needs to be loaded in order to correctly
handle ftp. Unfortunately that system is so old that I no longer remember
what said module would be called. Ah, but Google remembers.
http://www.linux.net.nz/lists/NZLUG/2000/06/0086.html
On Wednesday 18 June 2003
Cool. I note that it says you can also turn to using passive FTP at the
client. Internet Explorer allows you to set the browser to use passive FTP.
At 03:09 PM 6/18/03 -0700, Aaron Grewell wrote:
There may be a firewall module that needs to be loaded in order to correctly
handle ftp.
On Wed, 18 Jun 2003 17:01:36 -0500
Jason Joines [EMAIL PROTECTED] wrote:
[snip]
$ipchains -A input -s $anyhost -d $thishost 1024:65535 -p tcp -i eth0
! -y -j ACCEPT
The users have IE x.x on win2k. I had one of them try to retrieve a
file via the win2k command line and that worked
Ahhh sooo, little grasshopper .. Problem is PASSIVE VS. PORTS ...
Passive mode connects to an arbitrary HIGH port number. The PORT
command FORCES it to use 21 as the COMMAND and port 20 as the
data side. You might want to try to see if the ftp command can be issued with
a PORT instead of passive.