Manualshelf

Securing FTP/iX

ManualsBrandsHP ManualsSoftwareMPE/iX 7.0 Operating System
19202122232425262728
ü
A welcome message based on the configuration settings in FTPHELLO will be displayed on successful logon, after
ü
The file supports substitution tokens, which help in displaying the date, working directory, remote host name and the local host name. The following are these special tokens:
%T The server time
%C The current working directory, i.e. the login directory
%R The remote host name
%L The local host name.
ü
If FTPHELLO.ARPA.SYS does not exist or is empty, then FTP will display the default customary one line message.
ü
In any line of FTPHELLO, all characters after a hash (#) are considered as comments and hence are
ignored.
ü
Any changes to this file will get reflected in the next FTP logon session.
6.5.3 Examples
Consider a sample FTPHELLO file as mentioned above. Following will be the welcome screen after a successful logon:
ftp> o FTPDEST
220 HP ARPA FTP Server [A0012H15] (C) Hewlett-Packard Co. 2000 [PASV SUPPORT]
Connected to FTPDEST (aa.bb.ccc.dd). (FTPINFO 40)
Name(manager): manager.sys
230-Access to this system is restricted, unauthorized use is prohibited by law.
230-The current working directory is '/SYS/PUB'
230-Connected to local host "FTPSRC'
230-Connection from remote host ' FTPDEST '
230-Connection time ' 5:09 AM'
230 User logged on
Remote system type is MPE/iX
ftp>
When FTPHELLO does not exist, only the User logged onmessage is displayed
ftp> o RemHost
220 HP ARPA FTP Server [A0012H15] (C) Hewlett-Packard Co. 2000 [PASV SUPPORT]
Connected to RemHost (aaa.bbb.ccc.ddd). (FTPINFO 40)
Name(manager): manager.sys
230 User logged on
Remote system type is MPE/iX
ftp>
7
Encryption Alternatives
As seen in the prior sections, FTP/iX provides features that can improve security. However, an important
consideration is that all data (files, user names, passwords) are still transferred as clear-
text, thus increasing the risks
of sniffer and middleman attacks. The following section describes several alternatives which help overcome this
limitation. The methods suggested below are feasible yet simple.
7.1
A Script to transfer files (securely) using FTP/iX
Page
22
of
28
Secure FTP on MPE/iX
7/18/2008
http://jazz.external.hp.com/papers/Securing
-
-
Whitepaper.html