FlashFXP Forums - View Single Post

darkone · 08-04-2005, 03:49 PM

io 1.0 will support secure site to site transfers. Because of known (?) security issue in current implementation, I never bothered to implement it. Also notice that PASSIVE mode SSL transfers are also vulnerable. Always prefer to use ACTIVE mode when possible. This applies to all daemons, and all implementations. Certificate based authentication on both control channel and data channel is a MUST for secure passive mode transfers.

08-04-2005, 03:49 PM
darkone Disabled Join Date: Dec 2001 Posts: 2,230	io 1.0 will support secure site to site transfers. Because of known (?) security issue in current implementation, I never bothered to implement it. Also notice that PASSIVE mode SSL transfers are also vulnerable. Always prefer to use ACTIVE mode when possible. This applies to all daemons, and all implementations. Certificate based authentication on both control channel and data channel is a MUST for secure passive mode transfers.