FTP Security Considerations | Zendy

Mark Allman | Zendy; Shawn Ostermann | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

FTP Security Considerations

Author(s) -

Mark Allman,

Shawn Ostermann

Publication year - 1999

Publication title -

rfc

Language(s) - English

Resource type - Reports

DOI - 10.17487/rfc2577

Subject(s) - file transfer protocol , password , computer science , computer security , file transfer , protocol (science) , ssh file transfer protocol , computer network , operating system , database , transfer (computing) , file system , the internet , medicine , alternative medicine , self certifying file system , pathology

The specification for the File Transfer Protocol (FTP) contains a number of mechanisms that can be used to compromise network security. The FTP specification allows a client to instruct a server to transfer files to a third machine. This third-party mechanism, known as proxy FTP, causes a well known security problem. The FTP specification also allows an unlimited number of attempts at entering a user's password. This allows brute force "password guessing" attacks. This document provides suggestions for system administrators and those implementing FTP servers that will decrease the security problems associated with FTP.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research