FTP over SSL/TLS (FTPS): 989, 990

Security Weaknesses:

  • Vulnerable to improper TLS configurations or outdated SSL/TLS versions.

  • Susceptible to brute-force attacks on credentials.

  • Poor client certificate validation may lead to MITM attacks.

Security Defense and Mitigation Measures:

  • Enforce strong TLS protocols (TLS 1.2 or higher).

  • Use strong, unique passwords and implement account lockout policies.

  • Require client-side certificates for mutual authentication.

  • Employ a firewall to filter and restrict FTPS traffic.

Indicators of Compromise or Attack:

  • Multiple failed login attempts or account lockouts.

  • Unusual file access patterns or unauthorized data transfers.

  • Certificate errors or unexpected changes in server configurations.

PreviousTrivial File Transfer Protocol (TFTP): 69NextSecure Shell (SSH): 22

Last updated