Security Basics mailing list archives
Re: Windows XP and FTP
From: "Hamish Stanaway" <koremeltdown () hotmail com>
Date: Tue, 17 Jan 2006 06:44:43 +0000
Hey there,I have tried this already as it was suggested by another subscriber, to no evail, I had no luck :( It looks as though this is an MS Related issue, however I am going to take a look at the logs both on my own server, and the client, and see if I can see if the handshake is being intiated at all - that will tell me if the connection attempt is even getting past the firewall or if it is halting the complete transaction.
Kindest of regards, Hamish Stanaway, CEO Absolute Web Solutions Limited http://www.absolutewebhosting.biz/
From: PCSC Information Services <info () pcsage biz> To: Hamish Stanaway <koremeltdown () hotmail com> CC: ccbean () gmail com, security-basics () securityfocus com Subject: Re: Windows XP and FTP Date: Mon, 16 Jan 2006 15:04:13 -0500 MIME-Version: 1.0 (Apple Message framework v746.2)Received: from mail.extendamail.com ([209.223.237.2]) by bay0-mc2-f17.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.211); Mon, 16 Jan 2006 12:04:10 -0800 Received: from 242-142.iaw.speede.com ([209.183.142.242] helo=[192.168.0.101])by mail.extendamail.com with esmtpa (Exim 4.43)id 1EyZkv-000Fw7-8y; Mon, 16 Jan 2006 14:11:05 -0500X-Message-Info: JGTYoYF78jEHjJx36Oi8+Z3TmmkSEdPtfpLB7P/ybN8= References: <BAY112-F20DD22713885FBE4E3F67BDE1B0 () phx gbl> X-Mailer: Apple Mail (2.746.2) Return-Path: info () pcsage bizX-OriginalArrivalTime: 16 Jan 2006 20:04:11.0009 (UTC) FILETIME=[04108F10:01C61AD8]Hi Hamish,I believe that you will need to add an exception for the particular application that you intend to use to ensure that the client will be able to connect using that application. By entering the exception by application you will also ensure that the application is enabled for all ports it will use.Sincerely, Sean Swayze info AT pcsage DOT biz On 16-Jan-06, at 3:57 AM, Hamish Stanaway wrote:Hi there Colin,Thank you for your suggestion - I have tried this, and unfortunately opening ports 20 & 21 on the firewall as an exception does not seem to make a difference, even after a restart of both the connection and the client machine itself.Kindest of regards, Hamish Stanaway, CEO Absolute Web Hosting / -= KoRe WoRkS =- Internet Security Auckland, New Zealand http://www.buywebhosting.net/ http://www.absolutewebhosting.biz/From: Colin Bean <ccbean () gmail com>To: "koremeltdown () hotmail com" <koremeltdown () hotmail com>, security-basics () securityfocus comSubject: Re: Windows XP and FTP Date: Wed, 11 Jan 2006 19:11:46 -0800 MIME-Version: 1.0Received: from nproxy.gmail.com ([64.233.182.195]) by bay0-mc2- f6.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.211); Wed, 11 Jan 2006 19:11:48 -0800 Received: by nproxy.gmail.com with SMTP id a27so183547nfc for <koremeltdown () hotmail com>; Wed, 11 Jan 2006 19:11:47 -0800 (PST) Received: by 10.48.31.20 with SMTP id e20mr96465nfe; Wed, 11 Jan 2006 19:11:46 -0800 (PST) Received: by 10.48.218.3 with HTTP; Wed, 11 Jan 2006 19:11:46 -0800 (PST)X-Message-Info: JGTYoYF78jEfTrAn+9Ijq2hTHcETT88HnnUixBrQWgo=DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in- reply-to:mime-version:content-type:references; b=HGoky2KvTYEXzCxXE1m7v2VnIbA+R4/rHPgepnft +47bhLWIQ747eKYJ4pRjpQUFTRUhjuAUHlLwMYEyKk7nbtkTxN875 +YrHPWx7L42CDi/y92RIJI7mWqCio4ZR59gnsV+3VkYyGagP8SI7gN1zvqN5rIKwXV +ZkUoLW+3Gvs= References: <20060110011058.12554.qmail () securityfocus com> <469858380601101448u68cb736ncfba7372cc02823e () mail gmail com>Return-Path: ccbean () gmail comX-OriginalArrivalTime: 12 Jan 2006 03:11:48.0731 (UTC) FILETIME= [ED317CB0:01C61725]Have you tried opening the FTP-related ports in the XP firewall (I beleive that FTP needs port 21 and 20, one for control and one for data transfer)? In the "add port" window, you can use "change scope" to limit connections toyour IP only, which should make the setup reasonably secure (besides thefact that you're using FTP ;) ) Don't think this will help much with thedomain name issues, but it might help with the actual transfer. hth, -Colin On 1/10/06, Mark Owen <mr.markowen () gmail com> wrote: > > On 10 Jan 2006 01:10:58 -0000, koremeltdown () hotmail com > > **snip**> > I could ask all of my XP using clients to just disable their XP Firewall > when uploading their websites via FTP, but I don't think the more savvy > customers would appreciate doing that (they are smart enough to realise what> it means to disable a firewall on todays internet).> > My question to the list is, does anyone know how to correctly configure > XP Firewall to get around this issue, or is disabling the firewall the only > way? I would like to include this in my FAQ, so the easier workthrough the> better. > > Does not resolve? Well, I don't have a XP machine in front of me but > you can goto the advanced section for the firewall settings and add > your FTP client to an exception list. Or, in the same spot you can > tell it to allow FTP to go through. I haven't had this kind of > problem before but this may fix it. > > Generally, when one of our users have a FTP/Firewall issue, and they> are using explorer as their FTP client, I have them enable Passive FTP> by going to "Internet Options" - "Advanced" - and check "Use Passive > FTP.." or likewise in what ever FTP client they may be using. > > -- > Mark Owen > >> --------------------------------------------------------------------- ------> EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE > The Norwich University program offers unparalleled Infosec management> education and the case study affords you unmatched consulting experience.> Tailor your education to your own professional goals with degree > customizations including Emergency Management, Business Continuity > Planning, > Computer Emergency Response Teams, and Digital Investigations. > > http://www.msia.norwich.edu/secfocus >> --------------------------------------------------------------------- -------> >---------------------------------------------------------------------- -----EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations.http://www.msia.norwich.edu/secfocus---------------------------------------------------------------------- ------
--------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus ----------------------------------------------------------------------------
Current thread:
- Re: Windows XP and FTP, (continued)
- Re: Windows XP and FTP Hamish Stanaway (Jan 15)
- Re: Windows XP and FTP Patrick Benson (Jan 17)
- Re: Windows XP and FTP nick (Jan 15)
- Re: Windows XP and FTP Hamish Stanaway (Jan 16)
- Re: Windows XP and FTP Hamish Stanaway (Jan 15)
- Re: Windows XP and FTP Shadow Mlists (Jan 14)
- Re: Windows XP and FTP Hamish Stanaway (Jan 16)
- Re: Windows XP and FTP unimportant (Jan 11)
- RE: Windows XP and FTP Roger A. Grimes (Jan 11)
- Re: Windows XP and FTP Hamish Stanaway (Jan 16)
- Re: Windows XP and FTP PCSC Information Services (Jan 16)
- Re: Windows XP and FTP Hamish Stanaway (Jan 17)
- Re: Windows XP and FTP PCSC Information Services (Jan 16)
- RE: Windows XP and FTP Mike Fetherston (Jan 17)
- RE: Windows XP and FTP Hamish Stanaway (Jan 20)
- RE: Windows XP and FTP Daniel Jimenez (Jan 20)
- RE: Windows XP and FTP Daniel Jimenez (Jan 23)