Comment by 0xbadcafebee
11 years ago
Eh. ssh/rsync is a hack, and not a very good one at that imho. scp is closer to being more useful, and rsync's native daemon/protocol is also good, though obviously not secure. FXSP is my favorite form of secure file transfer; accounts are independent from the system users, you have total control over the transfers, and they're between high-bandwidth bastions which the user doesn't need direct access to (not to mention the client doesn't have to stay connected to transfer the file[s]!)
You mean this: http://en.wikipedia.org/wiki/File_eXchange_Protocol ? So what's about
"Enabling FXP support can make a server vulnerable to an exploit known as FTP bounce. As a result of this, FTP server software often has FXP disabled by default."
That's.... dumb. It's not a vulnerability, it's a feature. The entire point of using FXP is to connect one server to another remote server. With FTP it was a "vulnerability" because people didn't expect users to send files or connect to random hosts, but with FXP it's the whole point of the protocol. (FTP bounce attacks have also been a solved issue for decades)