Highest Voted 'ftp' Questions - IT Security Stack Exchange

1

vote

1 answer

SElinux security context public_content_t for vsftpd

My understanding of SElinux context public_content_t is as public_content_t is required for files shared via a FTP server unless associated with a user home directory Here is my question Does user include FTP anonymous user ftp? If I have created a…

linux ftp selinux

asked Jul 03 '14 at 04:29

Ask and Learn

111
1
3

1

vote

1 answer

How to use an OR condition with the content of a snort rule

I understand that if you specify multiple contents then the rule triggers only if ALL the content conditions are satisfied. But I want to create a rule that will trigger even if any one of the content keywords are detected. Note that it has to be in…

snort ftp

asked Feb 14 '14 at 20:02

ritratt

373
4
6

1

vote

2 answers

Securing multiple connections with different protocols all together

I need to secure the communication between an application (runs on any PC and has been designed for Windows) and an external device (runs on UNIX). The application is running on Windows while the device is Unix-based. I can directly influence the…

tls ssh ftp tcp

asked Nov 13 '13 at 10:29

WMEZ

341
2
11

1

vote

1 answer

Script injection on different hosting servers = FTP hacking?

I've been seeing the exact same injected script on several of my websites for the last few weeks. Today I realize these websites don't share the same hosting servers, yet the attacks (1) started at the same time (2) are identical. Does this prove…

ftp

asked Mar 19 '13 at 05:16

drake035

453
1
4
11

1

vote

3 answers

IT department says our windows 10 server is 100% going to be hacked because of port-forwarding my software

We have a local virtual windows 10 server hosting some custom software. This VM is only hosting this service and nothing else. This software is made of: An ASP.Net core web app, public API, only returns data, never writes Custom UDP communication…

windows-10 ftp port-forwarding

asked Jun 03 '20 at 16:53

Nick Peelman

11
3

1

vote

1 answer

IIS FTPS Best Practise

I have the task to place an FTP server in the company DMZ for our partners to store sensitive data that can not be sent by mail. I have chosen the IIS FTPS. I will generate a self-signed certificate for server authentication. Also, I was planning…

hardening iis ftp

asked Dec 12 '19 at 20:17

John

167
4

1

vote

0 answers

Will this SFTP setup successfully keep users from accessing other areas of the filesystem?

If the access is secured; users are chrooted in their home directory, and other security basics, how difficult is it for users to access other data on the server? Dedicated server Linux CentOS ftp server software : Pureftpd TLS enabled FTP users…

permissions ftp sftp

asked Nov 12 '19 at 14:20

Nico

121
4

1

vote

1 answer

Bluehost Wordpress Site hacked multiple times FTP MMprobe php file

Anyone have experience and advice to locate the source and stop an ftp hack on my client's Wordpress site hosted on BlueHost? The hackers were able to do the following: Create multiple ftp accounts with usernames like ss-ee4f8275917dfe28 etc.…

php wordpress ftp

asked Jul 19 '19 at 05:49

chris

11
1

1

vote

1 answer

Nmap port scan and FTP bounce

Suppose that there is a network of machines, and there is a server with ftp server that allows ftp bounce. I do a nmap scan on the network nmap -sC -some other parameters network address. Does nmap use ftp bounce to attack the network? If not, how…

ports ftp nmap

asked Sep 22 '12 at 03:11

Dotzio

53
1
3

1

vote

1 answer

Is the ftp server insecure, or someone is sniffing our ftp passwords?

Some of the sites that I work with was compromised a while ago, I requested the FTP logs from the hosting company and they provided me with this: ftp.somesite.com 64.29.xxx.xxx 87.236.xxx.xxx[09/Jul/2012:13:37:02 -0400] - - "STOR //t2TdyX8f.gif…

ftp

asked Sep 07 '12 at 14:22

user893730

363
1
4
6

1

vote

1 answer

Exfiltration through FTP using XXE on a Tomcat server

I'm trying to extract binary data from a Tomcat server that is using SAXParser. For my FTP server, I am using this source. I'm hosting two DTD's on Github Gist. These are their contents: Base XML (What gets sent to the server):

web-application exploit ftp tomcat xxe

asked Nov 08 '18 at 14:18

Rob Gates

249
3
11

1

vote

2 answers

FortiClient VPN - WinSCP (FTP client)

Can I use FortiClient VPN access to secure my FTP client transfers? Is it possible to route the FTP to use the VPN? Does it make sense to do it, is it secure if possible? The reason I am asking this is because I want to secure my access to remote…

vpn ftp

asked Jun 26 '18 at 08:52

Vitaliy Terziev

113
5

1

vote

1 answer

Filezilla for macOS - Virus?

I'm trying to download FileZilla for my MacBook and I have McAfee installed. When I click on the download button, the antivirus flags it as Artemis!70506fb398e5 so I decided to upload the file to VirusTotal and I get this: Of course I'm downloading…

virus antivirus ftp

asked Jun 11 '18 at 17:11

Arturo

363
3
8

1

vote

2 answers

How to enable OCSP stapling on my FTPS server. Is it even possible with vsftpd?

How to enable OCSP stapling on my FTPS server. Is it even possible with vsftpd or not? Even if possible, would it be wise on an FTPS server? Isn't that only a web-thing? Current result: High-Tech Bridge > SSL/TLS Server Test >…

tls ftp oscp

asked Feb 15 '18 at 07:34

LinuxSecurityFreak

1,562
2
18
32

1

vote

1 answer

FTP Bounce attack, what's wrong?

I'm studying security in a training lab, and I'm trying to implement the infamous FTP-bounce attack. I'll use a remote FTP server (called BOUNCE here) in order to access a folder on the VICTIM machine which is forbidden for my IP address. I don't…

ftp

asked Oct 17 '16 at 14:27

ahg8tOPk78

61
1
4

Prev 1 2 3

…

8 9 Next

Questions tagged [ftp]