Name
Abstract | ||
|---|---|---|
Once pervasive, the File Transfer Protocol (FTP) has been largely supplanted by HTTP, SCP, and BitTorrent for transferring data between hosts. Yet, in a comprehensive analysis of the FTP ecosystem as of 2015, we find that there are still more than 13~million FTP servers in the IPv4 address space, 1.1~million of which allow "anonymous" (public) access. These anonymous FTP servers leak sensitive information, such as tax documents and cryptographic secrets. More than 20,000 FTP servers allow public write access, which has facilitated malicious actors' use of free storage as well as malware deployment and click-fraud attacks. We further investigate real-world attacks by deploying eight FTP honeypots, shedding light on how attackers are abusing and exploiting vulnerable servers. We conclude with lessons and recommendations for securing FTP. |
Year | DOI | Venue |
|---|---|---|
2016 | 10.1109/DSN.2016.52 | 2016 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN) |
Keywords | Field | DocType |
File Transfer Protocol,FTP server,cloud computing,IPv4 address,public write access,malware deployment,click-fraud attack | File Transfer Protocol,Honeypot,Computer science,Computer security,Server,Round-robin DNS,Computer network,BitTorrent,Malware,Information sensitivity,IPv4 address exhaustion,Distributed computing | Conference |
ISBN | Citations | PageRank |
978-1-4673-8892-4 | 0 | 0.34 |
References | Authors | |
14 | 3 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Drew Springall | 1 | 140 | 5.82 |
| Zakir Durumeric | 2 | 935 | 48.86 |
| J. Alex Halderman | 3 | 2301 | 149.67 |