----- Original Message ----- From: "Arno Garrels" <[EMAIL PROTECTED]> To: "ICS support mailing" <twsocket@elists.org> Sent: Tuesday, March 14, 2006 9:30 PM Subject: Re: [twsocket] TFtpServer time not listed
> Fastream Technologies wrote: >> ----- Original Message ----- >> From: "Arno Garrels" <[EMAIL PROTECTED]> >> To: "ICS support mailing" <twsocket@elists.org> >> Sent: Tuesday, March 14, 2006 8:31 PM >> Subject: Re: [twsocket] TFtpServer time not listed >> >> >>> Fastream Technologies wrote: >>>> ----- Original Message ----- >>>> From: "Angus Robertson - Magenta Systems Ltd" <[EMAIL PROTECTED]> >>>> To: <twsocket@elists.org> >>>> Sent: Tuesday, March 14, 2006 7:29 PM >>>> Subject: Re: [twsocket] TFtpServer time not listed >>>> >>>> >>>>>>> My applications all use the MLSD directory stuff, >>>>>> Are those commands supported by most servers today? >>>>> >>>>> All except for Microsoft I think, while each new HTTP server in IIS is >>>>> a major step forward, the IIS FTP server is still pretty pathetic in >>>>> terms of modern commands, no SSL and only integrated security. >>>>> >>>>> But my only applications with the ICS FTP server are for use with my >>>>> own clients. A public FTP server needs a lot of security and stuff to >>>>> be safe, I'm not planning on offering one. >>>> >>>> We have been supporting MLSD/MLST before ICS began doing so. Angus is >>>> right about security as NETFile server FTP part was on bugtraq a few >>>> times. Thank God it is no longer vulnerable--at least to those in >>>> Bugtraq and Vulnerability Watch. >>> >>> I don't understand, why should MLSD/MLST be more unsecure than LIST? >> >> No, I mean FTP (as a protocol) is more unsecure than HTTP. Our product is >> both a web server and a FTP server combined >> (http://www.fastream.com/netfileserver.htm) and bugtraq hunters hunted >> the >> FTP side more. > > That may be, but has nothing to do with the OP. > I count this in as yet another promotion attempt. Sorry if I offended. I just wanted to give a reference so people can google and see the vulnerabilities we had with our ICS software in the past so that they do not fall into the same trap. Best Regards, SubZ -- To unsubscribe or change your settings for TWSocket mailing list please goto http://www.elists.org/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be
