<<much snipped>> > Even with the best firewall in the world, I'm pretty convinced that > you need an ftp server that implements the FTP protocol correctly > before you have a hope of handling PASV correctly. Which is a different way of making the point Greg Hoglund did in a recent-ish ntbugtraq post (Subject: Crappy code is crappy code ...) that a firewall has an icicle's chance in hell of adequately mimicking a system it is supposed to protect if it does so purely on the assumption that the code it is protecting works "correctly" by the firewall developer's interpretation of "correct". Regards, Nick FitzGerald
- Re: FireWall-1 FTP Server Vulnerability Lars . Troen
- Re: FireWall-1 FTP Server Vulnerability Alexandru Popa
- Re: FireWall-1 FTP Server Vulnerability monti
- Re: FireWall-1 FTP Server Vulnerability Henrik Nordstrom
- Re: FireWall-1 FTP Server Vulnerability Mikael Olsson
- Re: FireWall-1 FTP Server Vulnerabilit... Emiliano Kargieman
- Re: FireWall-1 FTP Server Vulnerabilit... Dug Song
- Re: FireWall-1 FTP Server Vulnerability Borbely Zoltan
- Re: FireWall-1 FTP Server Vulnerability Peter Benie
- Re: FireWall-1 FTP Server Vulnerability Nick FitzGerald
- Re: FireWall-1 FTP Server Vulnerability der Mouse
- Re: FireWall-1 FTP Server Vulnerability chess
