[c-nsp] Feedback on upcoming removal of FTP access to secured software
Jeff Kell
jeff-kell at utc.edu
Tue Sep 14 10:24:22 EDT 2010
On 9/14/2010 9:18 AM, Gert Doering wrote:
> Hi,
>
> On Tue, Sep 14, 2010 at 09:00:01AM -0400, Jason Gurtz wrote:
>> This is a poor decision and should be reconsidered; Cisco should be
>> expanding, not reducing FTP access. One should be able to login via ftp
>> with their CCO ID/password and download full encryption software. If
>> business needs dictate, then via FTP over SSL or a similar secure,
>> ftp-like protocol such as sftp (part of ssh).
>
> Full ACK.
Amen. Especially since it "can" be done. There are some devices (e.g.,
Cisco IPS) that can themselves download signature and software updates,
so there *IS* a straightforward mechanism there.
Why the customer access HAS to be hidden 12-clicks deep with "yet
another download manager applet" is beyond me.
It is helpful the first time to find what you want, but increasingly
annoying with each subsequent update :-)
Jeff
More information about the cisco-nsp
mailing list