NO PATCH - this is terse response from IPSWITCH we received when we called in problem. Not even any comment about it on support web page - NOT impressed
The report is skewed. It is possible with *any* ftp server, but specifically for WS_FTP Server you can: 1: turn off third party transfers 2: use a secure ftp client and set the server so it won't accept anything less WS_FTP Server provides control and data channel security if the proper client is being used, (I.e, one that supports SSL), prohibiting or at least making meaningless any hijacking of a data transfer. While no authentication is required to hijack a data transfer, proper authentication and procedures eliminate any threat or loss of data. ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Anyone one know if there is a patch for this yet? http://www.iss.net/security_center/static/10493.php http://www.iss.net/security_center/static/10494.php Mukesh Tailor Systems Analyst, NT Server Support City of Edmonton Phone:(780)496-6658 Email: [EMAIL PROTECTED] Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list.
