Security Basics mailing list archives

RE: Open All Outbound Ports?

From: "G. Class" <method13 () u washington edu>
Date: Mon, 18 Nov 2002 11:30:30 -0800 (PST)

I never agreed with it, but one
of their reasons to open this was passive FTP.  Their reason was a lot of
the sites that were visited used Passive FTP, that randomly uses any port
above port 1024.


Why not just restrict the ip ranges to a few hundred (thousand) ports?
This is explained in the active vs passive ftp site,
http://slacksite.com/other/ftp.html under the topic ftp appendix.

Gregory Class
Univ. of Washington

Current thread:

RE: Open All Outbound Ports?, (continued)
- RE: Open All Outbound Ports? Clint Harris (Nov 12)
- AW: Open All Outbound Ports? Robert Sieber (Nov 13)
- RE: Open All Outbound Ports? Garbrecht, Frederick (Nov 11)
  - RE: Open All Outbound Ports? Naveed Ahmed (Nov 12)
- Re: Open All Outbound Ports? m2dzus (Nov 11)
  - Re: Open All Outbound Ports? James Butcher (Nov 12)
- Re: Open All Outbound Ports? mitch_latham (Nov 11)
- Re: Open All Outbound Ports? Chris Berry (Nov 12)
  - RE: Open All Outbound Ports? Chris Alliey (Nov 15)
    - RE: Open All Outbound Ports? Mark Merchant (Nov 18)
    - RE: Open All Outbound Ports? G. Class (Nov 21)
    - Message not available
    - RE: Open All Outbound Ports? Mark Merchant (Nov 22)
- Re: Open All Outbound Ports? David Weinberg (Nov 12)
- RE: Open All Outbound Ports? DeGennaro, Gregory (Nov 13)
- Re: Open All Outbound Ports? James Lee Gromoll (Nov 16)
- RE: Open All Outbound Ports? Louis Erickson (Nov 16)
- RE: Open All Outbound Ports? Farrelly, Brian (Nov 17)