Path: utzoo!news-server.csri.toronto.edu!rutgers!cs.utexas.edu!sdd.hp.com!caen!etsu!cmi.com!kevinh
From: kevinh@cmi.com (Kevin Hegg)
Newsgroups: comp.dcom.sys.cisco
Subject: Re: Wide Area ApplTalk
Message-ID: <9176@etsu.CMI.COM>
Date: 11 Mar 91 19:08:10 GMT
References: <1991Mar5.005841.23836@bwdls61.bnr.ca>
Sender: news@etsu.CMI.COM
Organization: EDS Corp - Center for Machine Intelligence
Lines: 22

>>We also provide the network applications preconfigured to
>> turn off server functions (disallow incoming ftp on the telnets, etc.)
>
>This is a tough user education point, as so many people are unaware that 
>a very useful FTP server is built into just about every Mac telnet going, 
>and they should disable when they don't need it, or setup a password.  
>(Setting up a password in NCSA telnet, for one,  is decidely 
>un-Mac like   :-)

I understand setting up passwords with NCSA Telnet, but doesn't this apply 
only to NCSA Telnet users? We are just now implementing a WAN with a 
number of outside access points, so security is becoming more of a concern 
than before. Anyway, there is a stack called HyperFTP which is readily 
available. I don't see any mechanism to prevent someone from using this to 
FTP to any Mac. Does anyone know of a way to prevent uncontrolled access 
to Macs with HyperFTP or any similar program? Is Apple doing anything to 
improve the security of Macs using MacTCP? It seems to me that the proper 
place for security is in the MacTCP software.

Kevin Hegg, EDS Corp - Center for Machine Intelligence
2001 Commonwealth Blvd., Ann Arbor, Michigan 48105
Phone: (313) 995-0900  Internet: kevinh@cmi.com   Applelink: D5990