|
|
hbghlyj
Posted at 2022-12-18 07:01:04
Last edited by hbghlyj at 2024-9-20 14:38:00Exposing and Circumventing China's Censorship of ESNI
...The GFW’s censorship on DNS, HTTP, SNI, FTP, SMTP, and Shadowsocks can also be measured outside-in.
我们指出,除了ESNI审查外,GFW对DNS、HTTP、SNI、FTP、SMTP和Shadowsocks的审查也可以从墙外进行测量。
腾讯云-为什么不建议在云主机上使用ftp的2个原因
配置困难:
[...]
安全性不佳:
FTP传输默认是明文传输,包括客户端发送给服务器用于鉴权的用户名和密码的传输。
SFTP / FTPS协议扩展了安全能力,基于SSL/TLS协议的新能力。
How insecure is FTP?
With plain FTP the credentials are passed in plain and thus can be easily sniffed. Also, the files are not only send in plain but they are also not protected against modifications, i.e. an active man in the middle might change the files on the fly. Insofar the risks are similar to plain HTTP, i.e. it might be fine within a trusted network but is a bad idea if you cannot fully trust the network.
普通 FTP,登录凭据以明文传递,因此可以轻松嗅探。 此外,文件不仅明文发送,而且也不保护受到修改,即活跃的中间人可能会即时更改文件。就此而言,风险类似于纯 HTTP,即在受信任的网络中它可能没问题,但如果您不能完全信任网络,那就不是一个好主意了。 |
|
色k
Posted at 2022-12-18 11:04:55
