back to article Pinging admins: Here comes your packet of networking news

What happened in networking this week? Well, for starters, Nokia acquired analytics company SpaceTime Insight, and will roll its capabilities into its Internet of Things business. SpaceTime Insight provides IoT analytics and applications for the transport, energy, and utilities sectors. Its focus was predicting asset failure, …

  1. Alister Silver badge

    unsecured FTP is officially dead

    There's no way that vanilla FTP should be exposed to the T'internet anymore, but we use it quite extensively inside our network, as it forms an effective barrier against ransomware and cryptoware - particularly recent variants which traverse SMB connections - so for instance the only access to our backup storage is by FTP, we've turned off NFS and CIFS.

    It is still the quickest method of file transfer with the least overhead of any protocol.

    1. Lee D Silver badge

      Re: unsecured FTP is officially dead

      Literally, you're basing your internal security on "nobody uses brass doorhandles any more, everyone uses these modern chrome things".

      It takes a fraction of a second for something that COULD traverse SMB connections to test an FTP port and follow that too. A virus that isn't modular is a real amateur show. The proper ones test and have things akin to Metasploit modules that literally use the techniques that you are revealing yourself vulnerable to.

      Though someone might traverse an SMB network with a given credential, the chances of having write access over random shares as anonymous user with any kind of useful data should be infinitesimal. But the chances of being able to sniff a plain-text FTP credential are... well... it's barely a handful of lines of code to do so. Sure there are SMB exploits just the same, but FTP is a really, really dumb idea.

      Especially when ANYTHING that actually is worth the money will support SSH2 for encrypted file transfer with full public-key authentication.

      You're like the people who say they "run Mac because there are less viruses". It's a nonsense. It's the PC equivalent of painting your car blue, because blue cars get broken into less often. It's not "security". It's "theatre".

      1. Alister Silver badge

        Re: unsecured FTP is officially dead

        Literally, you're basing your internal security on "nobody uses brass doorhandles any more, everyone uses these modern chrome things".

        No Lee, we aren't. It's just used for backups, because it's quicker than any other protocol.

        1. tip pc Silver badge

          Re: unsecured FTP is officially dead

          It's just used for backups, because it's quicker than any other protocol.

          1) you are happy for your backups to be accessed from anyone within your network, with any passwords transmitted in plain text?

          2) SFTP has little overhead and is just as quick if not quicker and plays nicer across security kit like firewalls (ftp's 2 port system is a pain to get right on some firewalls).

      2. amanfromMars 1 Silver badge

        A Much Bigger Madding and Maddening Cloud Crowding Picture

        It's not "security". It's "theatre". .... Lee D

        Everything is "theatre", Lee D. So what then does that make security? A Grand Search for the Perfect Script?

        And the answer to that second question is not No.

        What mad/bad/sad/rad/fab lab tales will you follow/hear/see today on, and via manipulating media machines, painting worlds as of yesterday for tomorrow to imagine is real and stable enough to not be rendered and remembered as an abominable series of pasts in the future?

        What views does the news need you to see and believe is true to maintain and retain the status quo and prevent ITs AIMaster Pilots from crashing and burning the Sublime and Internetworking Source Providers?

  2. John Gamble

    Farewell FTP

    Though in this century I had only used it with ... Yahoo.

    So it's not like I had a pressing need for it.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2020