
This is the Title of the Book, eMatter Edition
Copyright © 2007 O’Reilly & Associates, Inc. All rights reserved.
Resources
|
405
remote stunnel process will decrypt your rsync packets and deliver them to the
remote rsync daemon. Reply packets, naturally, will be sent back through the
same encrypted connection.
As you can see, rsync itself isn’t configured much differently in this scenario from
anonymous rsync: most of the work is in setting up Stunnel forwarders.
Resources
Bernstein, D. J. “PASV Security and PORT Security.”
Online article at http://cr.yp.to/ftp/security.html (17 April 2004).
http://cr.yp.to/publicfile.html. (17 April 2004)
The home of publicfile, D. J. Bernstein’s secure FTP/HTTP server. Like djbdns,
it uses Bernstein’s daemontools and ucspi-tcp packages.
Carnegie Mellon University (CERT Coordination Center). “Anonymous FTP
Abuses.” (http://www.cert.org/tech_tips/anonymous_ftp_abuses.html) 17 April 2004.
Carnegie Mellon University (CERT Coordination Center). “Anonymous FTP Config-
uration Guidelines.” (http://www.cert.org/tech_tips/anonymous_ ftp_config.html) 17
April 2004.
Carnegie Mellon University (CERT Coordination Center). “Problems with the FTP
PORT Command or Why You Don’t Want Just Any PORT in a Storm.” (http://www.
cert.org/tech_tips/ftp_port_attacks.html) 17 April 2004.
Garfinkel, Simson and Gene Spafford. Practical Unix and Internet Security. Sebasto-
pol, CA: O’Reilly, 1996. ...