Article 155777 of comp.os.vms: Hi Wizards, Can anyone recommend me vendors that produces FTP utilities that can accept proxy setup on a Solaris and Netware ?? Many thanks. cheers, peter :) ______________________________ Reply Separator _________________________________ Subject: Re: OpenVMS vs UNIX internode File Transfer. Author: rkoehler (rkoehler@csc.com) at zhuxsh Date: 5/9/96 10:05 PM Tack-Kok.Koh@ubs.com wrote: : Hi Wizards, : Don't get me wrong, I'm not trying to start another OVMS-Unix war. : I've always heard and read that Unix is not as secure as OpenVMS, but with : no practical examples. Now that when I try to automate a manual FTP : process from an OpenVMS host to a Unix/Netware host, I see the problem. : This is because OpenVMS has proxy setup which enable DECnet copy without : using password, and Unix/Netware doesn't have such a feature on TCP/IP. : (Nope, no embedding of password in FTP script !) Sorry, but this is NOT a UNIX vs. VMS issue. It's an IP vs. DECnet issue. IP on VMS has the same problems, and DECnet on UNIX has the same advantages: Anyone can open a socket in IP and exchange data with no authentication mechanism. Many standard IP utilties such as TELNET and FTP are smart enough not to exchange data without first finding out who's at the other end. Some implementations of FTP provide proxy-like secure techniques for making this transperant, others are foolish enough to think that no world read access on a file is protection enough. No one can open a DECnet logical link without going through authentication. This can be made transparant via proxies or default accounts, but DECnet doens't open the link until it has some idea why the user at the other end should be allowed access to the system. Security holes in standard IP utilities have been ported to VMS by careless vendors. ------------------------------------------------------------------------------ Bob Koehler | CSC/SSD/MITG rkoehler@csc.com |