16 May
2008
16 May
'08
11:40 a.m.
On Friday 16 May 2008, Gordon JC Pearce wrote:
On Thu, 2008-05-15 at 15:27 -0700, Doc Shipley wrote:
Huh? I assume that we're talking about anonymous FTP, and that we're
running a version with the latest security updates in place... FTP with
a username and password (well, if it has any access beyond the FTP
repository on the machine) sent in plaintext across the "internet
cloud" probably isn't a smart idea.
Of course, if you use http instead, that means that your content will
(probably) get index by the likes of Google, so that other people can
actually find it...
Pat
--
Purdue University Research Computing --- http://www.rcac.purdue.edu/
The Computer Refuge --- http://computer-refuge.org
I'm not even going to start with the
security issues.
Yeah. FTP is pretty much the best example I can think of if you
wanted me to name a massive security hole. You might as well just
post your root password and IP address on some l33t h4xx0r forum.