Security Basics mailing list archives
Re: Windows XP and FTP
From: "Hamish Stanaway" <koremeltdown () hotmail com>
Date: Mon, 16 Jan 2006 08:57:49 +0000
Hi there Colin,Thank you for your suggestion - I have tried this, and unfortunately opening ports 20 & 21 on the firewall as an exception does not seem to make a difference, even after a restart of both the connection and the client machine itself.
Kindest of regards, Hamish Stanaway, CEO Absolute Web Hosting / -= KoRe WoRkS =- Internet Security Auckland, New Zealand http://www.buywebhosting.net/ http://www.absolutewebhosting.biz/
From: Colin Bean <ccbean () gmail com>To: "koremeltdown () hotmail com" <koremeltdown () hotmail com>, security-basics () securityfocus comSubject: Re: Windows XP and FTP Date: Wed, 11 Jan 2006 19:11:46 -0800 MIME-Version: 1.0Received: from nproxy.gmail.com ([64.233.182.195]) by bay0-mc2-f6.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.211); Wed, 11 Jan 2006 19:11:48 -0800 Received: by nproxy.gmail.com with SMTP id a27so183547nfc for <koremeltdown () hotmail com>; Wed, 11 Jan 2006 19:11:47 -0800 (PST) Received: by 10.48.31.20 with SMTP id e20mr96465nfe; Wed, 11 Jan 2006 19:11:46 -0800 (PST)Received: by 10.48.218.3 with HTTP; Wed, 11 Jan 2006 19:11:46 -0800 (PST) X-Message-Info: JGTYoYF78jEfTrAn+9Ijq2hTHcETT88HnnUixBrQWgo=DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=HGoky2KvTYEXzCxXE1m7v2VnIbA+R4/rHPgepnft+47bhLWIQ747eKYJ4pRjpQUFTRUhjuAUHlLwMYEyKk7nbtkTxN875+YrHPWx7L42CDi/y92RIJI7mWqCio4ZR59gnsV+3VkYyGagP8SI7gN1zvqN5rIKwXV+ZkUoLW+3Gvs= References: <20060110011058.12554.qmail () securityfocus com> <469858380601101448u68cb736ncfba7372cc02823e () mail gmail com>Return-Path: ccbean () gmail comX-OriginalArrivalTime: 12 Jan 2006 03:11:48.0731 (UTC) FILETIME=[ED317CB0:01C61725]Have you tried opening the FTP-related ports in the XP firewall (I beleive that FTP needs port 21 and 20, one for control and one for data transfer)?In the "add port" window, you can use "change scope" to limit connections toyour IP only, which should make the setup reasonably secure (besides the fact that you're using FTP ;) ) Don't think this will help much with the domain name issues, but it might help with the actual transfer. hth, -Colin On 1/10/06, Mark Owen <mr.markowen () gmail com> wrote: > > On 10 Jan 2006 01:10:58 -0000, koremeltdown () hotmail com > > **snip**> > I could ask all of my XP using clients to just disable their XP Firewall> when uploading their websites via FTP, but I don't think the more savvy> customers would appreciate doing that (they are smart enough to realise what> it means to disable a firewall on todays internet).> > My question to the list is, does anyone know how to correctly configure > XP Firewall to get around this issue, or is disabling the firewall the only > way? I would like to include this in my FAQ, so the easier workthrough the> better. > > Does not resolve? Well, I don't have a XP machine in front of me but > you can goto the advanced section for the firewall settings and add > your FTP client to an exception list. Or, in the same spot you can > tell it to allow FTP to go through. I haven't had this kind of > problem before but this may fix it. > > Generally, when one of our users have a FTP/Firewall issue, and they > are using explorer as their FTP client, I have them enable Passive FTP > by going to "Internet Options" - "Advanced" - and check "Use Passive > FTP.." or likewise in what ever FTP client they may be using. > > -- > Mark Owen > >> ---------------------------------------------------------------------------> EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE > The Norwich University program offers unparalleled Infosec management> education and the case study affords you unmatched consulting experience.> Tailor your education to your own professional goals with degree > customizations including Emergency Management, Business Continuity > Planning, > Computer Emergency Response Teams, and Digital Investigations. > > http://www.msia.norwich.edu/secfocus >> ----------------------------------------------------------------------------> >
--------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus ----------------------------------------------------------------------------
Current thread:
- Re: Windows XP and FTP, (continued)
- Re: Windows XP and FTP Fabien Degouet (Jan 12)
- Re: Windows XP and FTP Ansgar -59cobalt- Wiechers (Jan 12)
- Re: Windows XP and FTP Hamish Stanaway (Jan 15)
- Re: Windows XP and FTP Patrick Benson (Jan 17)
- Re: Windows XP and FTP nick (Jan 15)
- Re: Windows XP and FTP Hamish Stanaway (Jan 16)
- Re: Windows XP and FTP Hamish Stanaway (Jan 15)
- Re: Windows XP and FTP Shadow Mlists (Jan 14)
- Re: Windows XP and FTP Hamish Stanaway (Jan 16)
- Re: Windows XP and FTP unimportant (Jan 11)
- RE: Windows XP and FTP Roger A. Grimes (Jan 11)
- Re: Windows XP and FTP Hamish Stanaway (Jan 16)
- Re: Windows XP and FTP PCSC Information Services (Jan 16)
- Re: Windows XP and FTP Hamish Stanaway (Jan 17)
- Re: Windows XP and FTP PCSC Information Services (Jan 16)
- RE: Windows XP and FTP Mike Fetherston (Jan 17)
- RE: Windows XP and FTP Hamish Stanaway (Jan 20)
- RE: Windows XP and FTP Daniel Jimenez (Jan 20)
- RE: Windows XP and FTP Daniel Jimenez (Jan 23)