> A while back Marcus Ranum had circulated in this mailing list on
> how to transfer a file through a remote login session (eg. rlogin
> or telnet). I am surprise to see that some firewall products out
> there still provide seperate access control on telnet and ftp. Using
> Marcus's technique, denying ftp but allowing telnet does not make
> any sense!
Same goes with e-mail.
mail person @
host < file and there are email->ftp gateways
and you bypassed the ftp control. However, if you didnt make ftp, telnet,
email seperate access controls, and you had to deny them all, there
wouldn't be much point connecting to the Internet (IMHO).
Christopher William Klaus Voice: (404)441-2531. Fax: (404)441-2431
Internet Security Systems, Inc. Computer Security Consulting
2000 Miller Court West, Norcross, GA 30071