Hi guys, this is my situation. I've got a vm setup out on the web and I am using PF as my firewall.
Currently I have a ruleset to allow outgoing ftp connections from tcp port >1023.
FTP-Proxy doesn't seem to be an option here and I don't really like the idea of opening all of those ports just for one silly outdated protocol in order to keep my system up to date.
1. Is there an alternative way I can set up ports to fetch through say, sftp?
2. On a production server with a public IP, would you be wary of opening all of those out ports just for ftp?
(Just in case I'm being too paranoid, if the answer is yes, I'll drop it and continue using ftp with all of those open ports.)
Currently I have a ruleset to allow outgoing ftp connections from tcp port >1023.
FTP-Proxy doesn't seem to be an option here and I don't really like the idea of opening all of those ports just for one silly outdated protocol in order to keep my system up to date.
1. Is there an alternative way I can set up ports to fetch through say, sftp?
2. On a production server with a public IP, would you be wary of opening all of those out ports just for ftp?
(Just in case I'm being too paranoid, if the answer is yes, I'll drop it and continue using ftp with all of those open ports.)