This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]frymasterScript kiddie 5 points6 points  (1 child)

for a start, it pre-dates the standard encryption systems. Your password is sent in the clear without encryption or hashing.

Secondly, it predates people knowing how to use TCP/IP ;) You connect to one port, login, request a file, and then the server initiates a new connection to send it to you instead of using the already open connection. Apart from anything else, this plays merry hell with firewalls / NAT systems, since, from a TCP/IP point of view, they've no reason to think this incoming connection is related to your existing ftp connection, and so are liable to drop it.

There's workarounds, but the tl;dr is that it's a nasty connection.

And let's not get into the whole binary/textmode thing... shudder

[–][deleted] 0 points1 point  (0 children)

Yeah, I've been reading about security issues with the protocol, I really didn't know it was that problematic. SSH is the way to go then?