Vulnerability Development mailing list archives
Re: PORT or PASV mode of IIS 4.0's FTP
From: Makoto Shiotsuki <shio () ST RIM OR JP>
Date: Mon, 7 Aug 2000 13:39:45 +0900
The ftp client is trying to "get" 15,000 1-K files from the IIS's FTP server,
the connection is killed by FW-1 after it got 100 files. The fw-log shows that when the client's "source port" hit a "pre-defined service (port) in the rulebase, the connection is dropped. CP explained that FW-1 thought that it was a security violation.
FW-1 doesn't like to open ftp-data-ports which are defined in FW-1 as "service". This may be the cause of the problem. Check out http://www.phoneboy.com/fw1/faq/0106.html Makoto Shiotsuki
Current thread:
- PORT or PASV mode of IIS 4.0's FTP C. K. Lung (Aug 02)
- Re: PORT or PASV mode of IIS 4.0's FTP Adam Prato (Aug 02)
- Re: PORT or PASV mode of IIS 4.0's FTP Adam Prato (Aug 03)
- Re: PORT or PASV mode of IIS 4.0's FTP Dug Song (Aug 03)
- Re: PORT or PASV mode of IIS 4.0's FTP Todd Garrison (Aug 03)
- Re: PORT or PASV mode of IIS 4.0's FTP Makoto Shiotsuki (Aug 08)
- Re: PORT or PASV mode of IIS 4.0's FTP Adam Prato (Aug 02)