have an ftp question regarding CCC - clear command channel ?
request was made to get files and the sender sent instructions on how to use ftp that "has been implemented with better security and more features".
the short of it is they say it's FTP over SSL having CCC implemented. And they suggest using coreftp.
having never heard of CCC i look it up and come across these posts at filezilla, which filezilla i tend to think is a pretty reputable ftp program.
https://forum.filezilla-project.org/...ic.php?t=18402
and the site admin in the 2nd post says "You do not gain anything by using FTP over TLS and then dropping the security as every attacker could just hijack the connection following the CCC, making it equally insecure as plain FTP. As such, I do not intend to ever implement support for CCC"
that said, i'm looking into ways for a best way to transfer files across the internet. what is the consensus on this?
the comment at filezilla was made that "Lazy or incompetent administrators should not host FTP servers behind a NAT"
I'm assuming this is the case with what i'm gonna be dealing with. If so, what is the best way to transfer files through a firewall?
Is there a simple secure way to do it, without modifying the existing firewall? Or is the proper way to "simply modify" the firewall to allow whatever secure/encrypted ftp method?
thanks.