Port command ended without a new line

[CPaul123]

I am running NG FP3 Hotfix 2 and I have a user trying to FTP
and the firewall is rejecting it with the following message: port command ended without a new line. Does anyone have any fixes for NG FP3, I read somewhere that there was a fix but didnt work with FP3.

Thanks

 

[kmills]

CPaul123,
I found this to work on NG FP3, don't know if it will work on hotfix 2. However, you need to edit in VI, editing with Notepad or Wordpad failed.

On the Management Station:

1. Edit the $FWDIR/lib/base.def
2. Change (comment out) the following line:

#define FTP_ENFORCE_NL
to:
//#define FTP_ENFORCE_NL

3. Re-install the security policy.

 

[CPaul123]

kmills,
Thanks for the information. That seemed to do the trick.

 

[scott3824]

I have encountered the same error and found that this seems to be the one and only solution to this problem. However, I have not been able to find any more information on this. Does anyone know what security holes, if any this opens up? I know this rule says there must be a return character (line break) at the end of an ftp packet and the problem seems to be that the line is physically too long and kicks the return character off of the end and down to the next line. Can anyone explain to me what security holes changing this setting exploits if any? Thanks in advance.