Solved

Letting Windows Firewall accept incoming connections

Posted on 2006-07-18
7
297 Views
Last Modified: 2013-12-04
When I run Super FTP Search (dowloaded from tucows, http://tucows.menanet.net/files3/fssetuptc.exe) my Windows Fireall does block it as it says it is trying to open an incoming connection from the internet. Why should it try to do it? Is it safe to list this software in the exception list of Windows Firewall?
0
Comment
Question by:s_federici
7 Comments
 
LVL 6

Expert Comment

by:glennbrown2
ID: 17128915
Open Control Panel, Windows Firewall, click on the "Exceptions" tab, "add program" and browse to your FTP program .exe file.  you could also "add port" if you need.  Port 21 is for ftp
0
 

Author Comment

by:s_federici
ID: 17128918
Or this is a stupid question and every FTP software does need an incoming connection to download info/file from the FTP site? What I fear would be having an open door on my PC.
0
 

Author Comment

by:s_federici
ID: 17128924
Yes, I know how to block/unblock it. But should I do it? Would that be safe for my PC?
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 
LVL 88

Expert Comment

by:rindi
ID: 17129183
whenever you open up ports you are giving outsiders a chance of connecting to your PC and do bad things. For that reason a Firewall normally will have all ports blocked. When you do open such a port, you should make sure that you setup the rest of your system secure enough so that it will be difficult for outsiders to compromise your PC by making sure that you use strong passwords, use encryption where possible and also make sure that you have installed the latest updates and patches which close known security holes. If you keep to such rules you'll stay as secure as possible. When you install a software like FTP you normally know what you need it for and also secure it, so then you can also open that port. If you don't know what that software is for, then keep the port closed.
0
 
LVL 32

Expert Comment

by:r-k
ID: 17131415
I am not familiar with Super FTP Search, but it must be doing more than just act as an FTP client. That doesn't necessarily mean it is bad, but you should dig more into it and see why it needs ports opened. Perhaps email the company that sells it.
0
 
LVL 12

Accepted Solution

by:
Phil_Agcaoili earned 500 total points
ID: 17132039
I think you should allow it.

It sounds like by default, the Super FTP Search FTP application use active FTP and your firewall is seeing the FTP server requesting the data download port on your system and is blocking it.

In order to resolve the issue of the server initiating the connection to the client a different method for FTP connections was developed. This was known as passive mode, or PASV, after the command used by the client to tell the server it is in passive mode.

Here's more info about passive versus active FTP to make you feel more comfortable: http://slacksite.com/other/ftp.html
0
 

Author Comment

by:s_federici
ID: 17136315
Yes, exactly. You are perfectly right. Thanks
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Permission issue? 10 68
How to organize and manage AD group? 10 66
Is my Machine open to hackers 3 100
Do I need additional protection from ransomware? 13 145
SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question