Solved

Letting Windows Firewall accept incoming connections

Posted on 2006-07-18
7
292 Views
Last Modified: 2013-12-04
When I run Super FTP Search (dowloaded from tucows, http://tucows.menanet.net/files3/fssetuptc.exe) my Windows Fireall does block it as it says it is trying to open an incoming connection from the internet. Why should it try to do it? Is it safe to list this software in the exception list of Windows Firewall?
0
Comment
Question by:s_federici
7 Comments
 
LVL 6

Expert Comment

by:glennbrown2
ID: 17128915
Open Control Panel, Windows Firewall, click on the "Exceptions" tab, "add program" and browse to your FTP program .exe file.  you could also "add port" if you need.  Port 21 is for ftp
0
 

Author Comment

by:s_federici
ID: 17128918
Or this is a stupid question and every FTP software does need an incoming connection to download info/file from the FTP site? What I fear would be having an open door on my PC.
0
 

Author Comment

by:s_federici
ID: 17128924
Yes, I know how to block/unblock it. But should I do it? Would that be safe for my PC?
0
Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

 
LVL 87

Expert Comment

by:rindi
ID: 17129183
whenever you open up ports you are giving outsiders a chance of connecting to your PC and do bad things. For that reason a Firewall normally will have all ports blocked. When you do open such a port, you should make sure that you setup the rest of your system secure enough so that it will be difficult for outsiders to compromise your PC by making sure that you use strong passwords, use encryption where possible and also make sure that you have installed the latest updates and patches which close known security holes. If you keep to such rules you'll stay as secure as possible. When you install a software like FTP you normally know what you need it for and also secure it, so then you can also open that port. If you don't know what that software is for, then keep the port closed.
0
 
LVL 32

Expert Comment

by:r-k
ID: 17131415
I am not familiar with Super FTP Search, but it must be doing more than just act as an FTP client. That doesn't necessarily mean it is bad, but you should dig more into it and see why it needs ports opened. Perhaps email the company that sells it.
0
 
LVL 12

Accepted Solution

by:
Phil_Agcaoili earned 500 total points
ID: 17132039
I think you should allow it.

It sounds like by default, the Super FTP Search FTP application use active FTP and your firewall is seeing the FTP server requesting the data download port on your system and is blocking it.

In order to resolve the issue of the server initiating the connection to the client a different method for FTP connections was developed. This was known as passive mode, or PASV, after the command used by the client to tell the server it is in passive mode.

Here's more info about passive versus active FTP to make you feel more comfortable: http://slacksite.com/other/ftp.html
0
 

Author Comment

by:s_federici
ID: 17136315
Yes, exactly. You are perfectly right. Thanks
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now