FTP bounce attack is an exploit of the FTP protocol whereby an attacker is able to use the PORT command to request access to ports indirectly through the use of the victim machine as a middle man for the request.
This technique can be used to port scan hosts discreetly, and to access specific ports that the attacker cannot access through a direct connection.
nmap is a port scanner that can utilize an FTP bounce attack to scan other servers.
Nearly all modern FTP server programs are configured by default to refuse PORT commands that would connect to any host but the originating host, thwarting FTP bounce attacks.
Famous quotes containing the words bounce and/or attack:
“You are the food,
you are the tooth, you are the husband,
light, light, sieving through the screen
whereon I bounce my big body at you
like shoes after a wedding car.”
—Anne Sexton (1928–1974)
“It is well worth the efforts of a lifetime to have attained knowledge which justifies an attack on the root of all evil—viz. the deadly atheism which asserts that because forms of evil have always existed in society, therefore they must always exist; and that the attainment of a high ideal is a hopeless chimera.”
—Elizabeth Blackwell (1821–1910)