Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Passive sftp?

from [Tom Lobato] Network Security [Permanent Link]
Subject: Re: Passive sftp?
Date: Wed, 05 Mar 2008 23:29:11 -0300 
Bob Rasmussen escreveu:


In the FTP protocol, "passive" means that only one connection is 
established, originating in the client. All trafic goes over this 
connection. (In non-passive FTP, the server opens a second channel back to 
the client.)

No such differentiation exists in SFTP. There is only one connection.

The vendor may be using "passive" in a different sense, but I don't think 
it is a widely accepted usage.


in really, both passive and active ftp modes uses two connections. The
first, which is originated on client (to port 21 on server), is the
control connection, for authentication, command/response exchanges, etc.
The second connection, which transfer effective data, support two modes:
  passive: originated from client to server. Uses destination port
defined on control connection.
  active: originated from server to client. Uses destination port 20 on
client.

See http://www.faqs.org/rfcs/rfc1579.html (Firewall-Friendly FTP).

good resources:
http://en.wikipedia.org/wiki/File_Transfer_Protocol
http://www.slacksite.com/other/ftp.html
http://www.faqs.org/rfcs/rfc959.html (for the braves!)


Tom Lobato
www.tinecon.com.br
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Requiring multiple authentication, Lars
Next by Date:  Re: Passive sftp?, Charles Ritter
Previous by Thread:  Re: Passive sftp?, Greg Wooledge
Next by Thread:  Re: Passive sftp?, Charles Ritter
Indexes:  [Date] [Thread] [Top] [All Lists]