Re: [PATCH -resend 4/6] netfilter: Implement RFC 1123 for FTPconntrack
From: Pablo Neira Ayuso
Date: Mon May 27 2013 - 08:20:47 EST
On Wed, May 22, 2013 at 02:59:10PM +0200, Jiri Slaby wrote:
> From: Jeff Mahoney <jeffm@xxxxxxxx>
>
> The FTP conntrack code currently only accepts the following format for
> the 227 response for PASV:
> 227 Entering Passive Mode (148,100,81,40,31,161).
>
> It doesn't accept the following format from an obscure server:
> 227 Data transfer will passively listen to 67,218,99,134,50,144
>
> From RFC 1123:
> The format of the 227 reply to a PASV command is not
> well standardized. In particular, an FTP client cannot
> assume that the parentheses shown on page 40 of RFC-959
> will be present (and in fact, Figure 3 on page 43 omits
> them). Therefore, a User-FTP program that interprets
> the PASV reply must scan the reply for the first digit
> of the host and port numbers.
Applied, thanks.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/