Date: Thu, 20 May 2010 14:04:53 -0400 From: Lowell Gilbert <freebsd-security-local@be-well.ilk.org> To: freebsd-questions@freebsd.org Cc: gahn <ipfreak@yahoo.com> Subject: Re: ftp passive mode Message-ID: <44eih68n5m.fsf@be-well.ilk.org> In-Reply-To: <44iq6i8v8s.fsf@be-well.ilk.org> (Lowell Gilbert's message of "Thu, 20 May 2010 11:10:11 -0400") References: <111263.90106.qm@web52308.mail.re2.yahoo.com> <44iq6i8v8s.fsf@be-well.ilk.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Lowell Gilbert <freebsd-questions-local@be-well.ilk.org> writes: > gahn <ipfreak@yahoo.com> writes: > >> I am behind firewall and only pass ftp sessions are allowed. With that, most ftp sessions of portupgrade would not be able to connect to remote FreeBSD sites. >> >> Could I reconfigure the my FreeBSD 7.3 in a way so that it would only start ftp sessions in PASV mode? > > That should already be the default; FETCH_ARGS should be set to "-ApRr" > in /etc/ports/Mk/bsd.port.mk (the 'p' option is what means "passive" > mode). It certainly works for me, and has for many years. You can test > by setting FTP_PASSIVE_MODE (to anything *except* "no") in the environment. And I notice that should already be set as well; it's part of the "default" class setting in /etc/login.conf.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44eih68n5m.fsf>