HPE Community
Operating System - HP-UX
1820647 Members
3017 Online
109626 Solutions
New Discussion юеВ

FTP Bounce Attack

 
ManojK_1
Valued Contributor

тАО05-24-2009 08:36 PM

тАО05-24-2009 08:36 PM

FTP Bounce Attack

In Our production environemnt we are using ftp to transfer some files from HP Unix Server (11.23) to Windows NT Server.

We found that daily two or three times the ftp is failing and more than 100 times it is working fine.

While searching for the issue and solution our security team told us that firewall is dropping this ftp becuase of the vulnerability "FTP Bounce Attack", the servers are using port 227 for file transfer instead of 21.

Can somebody advice on this. FTP Version wuftpd-2.6.1

Thanks and Regards,
Manoj K


Thanks and Regards,
Manoj K
0 Kudos
Reply
2 REPLIES 2
Suraj K Sankari
Honored Contributor

тАО05-24-2009 08:40 PM

тАО05-24-2009 08:40 PM

Re: FTP Bounce Attack

Hi,
>>We found that daily two or three times the ftp is failing and more than 100 times it is working fine.

Every day at what time its failing, did you noticed that?

Did you check the syslog.log file any error message are there ?

Suraj
0 Kudos
Reply
ManojK_1
Valued Contributor

тАО05-24-2009 09:06 PM

тАО05-24-2009 09:06 PM

Re: FTP Bounce Attack

Hi,

There is no specific time for the failure, it is happening randomly.

No messages in syslog regarding this failure.

Thanks and Regards,
Manoj K
Thanks and Regards,
Manoj K
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.