Re: FTP bounce inside proxy

["Marcus J. Ranum" <mjr () nfr net>]

Stout, Bill wrote:
> Can an FTP bounce attack systems (or other ports on that FTP server) behind
> a proxy?

It depends on the proxy. Some proxies implement FTP commands the
way the FTP daemon does, in which case the proxy itself may be
used as a FTP bounce jump-off point. I'm only intimately familiar
with a small number of proxies, but those do the right thing. (They
also don't bind a privileged port, which has caused some people
to complain - go figure)

mjr.
--
Marcus J. Ranum, CEO, Network Flight Recorder, Inc.
work - http://www.nfr.net
home - http://www.clark.net/pub/mjr