Passive vs Active FTP

I found this really good explanation of passive versus active FTP. This explains why it doesn't work through most firewalls. Of course there are modules for most firewalls to allow active FTP, but I don't really know why you'd want to. I don't see any reasons NOT to use passive FTP.
Leave A Reply - 1 Reply
Replies
Anonymous 2002-02-13 09:09am - No Email - Logged IP: unknown

The reason regular ftp has a data channel and a command channel, is to avoid the issues involved in escaping data that might appear as a command. This is a pretty common issue when dealing with filetransfer protocols, and the guys who wrote the original FTP spec thought that they could avoid this issue altogether by making their commands travel out of band of the data. So anyway when you pass the commands and data through the same pipe you run the risk of data corruption if your escaping protocol is not perfect and you add the overhead of escaping data that would be misinterpreted as a protocol command....joden@eworld.wox.org

All content licensed under the Creative Commons License