Home page logo
/

basics logo Security Basics mailing list archives

Re: Windows XP and FTP
From: "Hamish Stanaway" <koremeltdown () hotmail com>
Date: Tue, 17 Jan 2006 06:44:43 +0000

Hey there,

I have tried this already as it was suggested by another subscriber, to no evail, I had no luck :( It looks as though this is an MS Related issue, however I am going to take a look at the logs both on my own server, and the client, and see if I can see if the handshake is being intiated at all - that will tell me if the connection attempt is even getting past the firewall or if it is halting the complete transaction.

Kindest of regards,

Hamish Stanaway, CEO

Absolute Web Solutions Limited
http://www.absolutewebhosting.biz/





From: PCSC Information Services <info () pcsage biz>
To: Hamish Stanaway <koremeltdown () hotmail com>
CC: ccbean () gmail com, security-basics () securityfocus com
Subject: Re: Windows XP and FTP
Date: Mon, 16 Jan 2006 15:04:13 -0500
MIME-Version: 1.0 (Apple Message framework v746.2)
Received: from mail.extendamail.com ([209.223.237.2]) by bay0-mc2-f17.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.211); Mon, 16 Jan 2006 12:04:10 -0800 Received: from 242-142.iaw.speede.com ([209.183.142.242] helo=[192.168.0.101])by mail.extendamail.com with esmtpa (Exim 4.43)id 1EyZkv-000Fw7-8y; Mon, 16 Jan 2006 14:11:05 -0500
X-Message-Info: JGTYoYF78jEHjJx36Oi8+Z3TmmkSEdPtfpLB7P/ybN8=
References: <BAY112-F20DD22713885FBE4E3F67BDE1B0 () phx gbl>
X-Mailer: Apple Mail (2.746.2)
Return-Path: info () pcsage biz
X-OriginalArrivalTime: 16 Jan 2006 20:04:11.0009 (UTC) FILETIME=[04108F10:01C61AD8]

Hi Hamish,

I believe that you will need to add an exception for the particular application that you intend to use to ensure that the client will be able to connect using that application. By entering the exception by application you will also ensure that the application is enabled for all ports it will use.

Sincerely,

Sean Swayze
info AT pcsage DOT biz

On 16-Jan-06, at 3:57 AM, Hamish Stanaway wrote:

Hi there Colin,

Thank you for your suggestion - I have tried this, and unfortunately opening ports 20 & 21 on the firewall as an exception does not seem to make a difference, even after a restart of both the connection and the client machine itself.



Kindest of regards,

Hamish Stanaway, CEO

Absolute Web Hosting / -= KoRe WoRkS =- Internet Security
Auckland, New Zealand

http://www.buywebhosting.net/
http://www.absolutewebhosting.biz/



From: Colin Bean <ccbean () gmail com>
To: "koremeltdown () hotmail com" <koremeltdown () hotmail com>, security-basics () securityfocus com
Subject: Re: Windows XP and FTP
Date: Wed, 11 Jan 2006 19:11:46 -0800
MIME-Version: 1.0
Received: from nproxy.gmail.com ([64.233.182.195]) by bay0-mc2- f6.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.211); Wed, 11 Jan 2006 19:11:48 -0800 Received: by nproxy.gmail.com with SMTP id a27so183547nfc for <koremeltdown () hotmail com>; Wed, 11 Jan 2006 19:11:47 -0800 (PST) Received: by 10.48.31.20 with SMTP id e20mr96465nfe; Wed, 11 Jan 2006 19:11:46 -0800 (PST) Received: by 10.48.218.3 with HTTP; Wed, 11 Jan 2006 19:11:46 -0800 (PST)
X-Message-Info: JGTYoYF78jEfTrAn+9Ijq2hTHcETT88HnnUixBrQWgo=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in- reply-to:mime-version:content-type:references; b=HGoky2KvTYEXzCxXE1m7v2VnIbA+R4/rHPgepnft +47bhLWIQ747eKYJ4pRjpQUFTRUhjuAUHlLwMYEyKk7nbtkTxN875 +YrHPWx7L42CDi/y92RIJI7mWqCio4ZR59gnsV+3VkYyGagP8SI7gN1zvqN5rIKwXV +ZkUoLW+3Gvs= References: <20060110011058.12554.qmail () securityfocus com> <469858380601101448u68cb736ncfba7372cc02823e () mail gmail com>
Return-Path: ccbean () gmail com
X-OriginalArrivalTime: 12 Jan 2006 03:11:48.0731 (UTC) FILETIME= [ED317CB0:01C61725]

Have you tried opening the FTP-related ports in the XP firewall (I beleive that FTP needs port 21 and 20, one for control and one for data transfer)? In the "add port" window, you can use "change scope" to limit connections to
your IP only, which should make the setup reasonably secure  (besides the
fact that you're using FTP ;) ) Don't think this will help much with the
domain name issues, but it might help with the actual transfer.

hth,
-Colin

On 1/10/06, Mark Owen <mr.markowen () gmail com> wrote:
>
> On 10 Jan 2006 01:10:58 -0000, koremeltdown () hotmail com
>
> **snip**
> > I could ask all of my XP using clients to just disable their XP Firewall > when uploading their websites via FTP, but I don't think the more savvy > customers would appreciate doing that (they are smart enough to realise what
> it means to disable a firewall on todays internet).
> > My question to the list is, does anyone know how to correctly configure > XP Firewall to get around this issue, or is disabling the firewall the only > way? I would like to include this in my FAQ, so the easier workthrough the
> better.
>
> Does not resolve?  Well, I don't have a XP machine in front of  me but
> you can goto the advanced section for the firewall settings and add
> your FTP client to an exception list.  Or, in the same spot you can
> tell it to allow FTP to go through.  I haven't had this kind of
> problem before but this may fix it.
>
> Generally,  when one of our users have a FTP/Firewall issue, and  they
> are using explorer as their FTP client, I have them enable Passive FTP
> by going to "Internet Options" - "Advanced" - and check "Use  Passive
> FTP.." or likewise in what ever FTP client they may be using.
>
> --
> Mark Owen
>
>
> --------------------------------------------------------------------- ------
> EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
> The Norwich University program offers unparalleled Infosec  management
> education and the case study affords you unmatched consulting experience.
> Tailor your education to your own professional goals with degree
> customizations including Emergency Management, Business Continuity
> Planning,
> Computer Emergency Response Teams, and Digital Investigations.
>
> http://www.msia.norwich.edu/secfocus
>
> --------------------------------------------------------------------- -------
>
>



---------------------------------------------------------------------- -----
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------- ------





---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault