Mailinglist Archive: opensuse-security (471 mails)
| < Previous | Next > |
Re: [suse-security] SuSE FTP-Proxy
- From: Till Franke <franke@xxxxxxx>
- Date: Wed, 4 Oct 2000 08:15:33 +0200
- Message-id: <20001004081533.A733@xxxxxxx>
Hi,
On Fri, Sep 29, 2000 at 09:22:38AM +0200, Steven Thompson wrote:
> Hi All
>
> Is the SuSE FTP-Proxy used mainly for inbound connections, as it warns you
> that if do not specify a destination FTP-Server the FTP-Proxy service will
> fail.
Yes, it is mainly used to proxy incoming FTP connections to one or more FTP
servers you maintain.
>
> <Quote>
> /etc/proxy-suite/ftp-proxy.conf
> # Where to redirect incoming FTP traffic. This destination
> # will be used if a client has not set its own target.
> # WARNING: ftp-proxy will refuse to run if this directive
> # is not set.
> #
> # DestinationAddress server.domain.tld<Quote>
>
> Question 2
>
> Are you able to set the "DestinationAddress" to a FTP Server sitting on a
> private network address. For example your DMZ was a private network i.e.
> 192.168.x.x
Yes.
>
> Question 3
>
> Is it possible to setup the FTP-Proxy for outbound connections only or is
> IP-Masquerade safe enough for outbound ftp connections.
use a proxy like for example `squid' for FTP downloads, use the SuSE
FTP proxy for uploads, use the `magic host' mechanism wisely if you
have to.
As for `safe enough': you have to decide that for your own environment.
Best regards,
Till.
>
> Thanks in advance
>
> Steven
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
> For additional commands, e-mail: suse-security-help@xxxxxxxx
>
--
Till Franke SuSE Linux Solutions AG
Tel: 07 11 / 72 72 54-0 Geschäftsstelle Südwest
Fax: 07 11 / 72 60 89 0 Zettachring 8
mailto:Till.Franke@xxxxxxx 70567 Stuttgart
On Fri, Sep 29, 2000 at 09:22:38AM +0200, Steven Thompson wrote:
> Hi All
>
> Is the SuSE FTP-Proxy used mainly for inbound connections, as it warns you
> that if do not specify a destination FTP-Server the FTP-Proxy service will
> fail.
Yes, it is mainly used to proxy incoming FTP connections to one or more FTP
servers you maintain.
>
> <Quote>
> /etc/proxy-suite/ftp-proxy.conf
> # Where to redirect incoming FTP traffic. This destination
> # will be used if a client has not set its own target.
> # WARNING: ftp-proxy will refuse to run if this directive
> # is not set.
> #
> # DestinationAddress server.domain.tld<Quote>
>
> Question 2
>
> Are you able to set the "DestinationAddress" to a FTP Server sitting on a
> private network address. For example your DMZ was a private network i.e.
> 192.168.x.x
Yes.
>
> Question 3
>
> Is it possible to setup the FTP-Proxy for outbound connections only or is
> IP-Masquerade safe enough for outbound ftp connections.
use a proxy like for example `squid' for FTP downloads, use the SuSE
FTP proxy for uploads, use the `magic host' mechanism wisely if you
have to.
As for `safe enough': you have to decide that for your own environment.
Best regards,
Till.
>
> Thanks in advance
>
> Steven
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
> For additional commands, e-mail: suse-security-help@xxxxxxxx
>
--
Till Franke SuSE Linux Solutions AG
Tel: 07 11 / 72 72 54-0 Geschäftsstelle Südwest
Fax: 07 11 / 72 60 89 0 Zettachring 8
mailto:Till.Franke@xxxxxxx 70567 Stuttgart
| < Previous | Next > |