Slacker News Slacker News logo featuring a lazy sloth with a folded newspaper hat
  • top
  • new
  • show
  • ask
  • jobs
Library
← Back to context

Comment by peterwwillis

11 years ago

That's.... dumb. It's not a vulnerability, it's a feature. The entire point of using FXP is to connect one server to another remote server. With FTP it was a "vulnerability" because people didn't expect users to send files or connect to random hosts, but with FXP it's the whole point of the protocol. (FTP bounce attacks have also been a solved issue for decades)

0 comments

peterwwillis

Reply

No comments yet

Contribute on Hacker News ↗

Slacker News

Product

  • API Reference
  • Hacker News RSS
  • Source on GitHub

Community

  • Support Ukraine
  • Equal Justice Initiative
  • GiveWell Charities