What Happens If I Log into the Wrong FTP Host?
If you try to log into the wrong host with FTP, there is a possibility that your credentials could be compromised. Making a typo in the host name does not automatically mean that your credentials are now in the wrong host’s server log.
There are a few factors to consider before deciding to change your credentials. Firstly, you need to determine if there is actually an FTP server listening on the mistyped domain and if the domain resolves correctly. Additionally, you should assess the value of the information on the FTP server and the difficulty of changing your password.
It is important to note that FTP credentials are sent in clear text, so any intervening system that logs packets could potentially have access to your username and password, regardless of whether the domain was typed correctly or not. However, not many systems actively log all packets.
If the mistyped domain does not resolve, you are no worse off than if you had typed the domain correctly. There are intervening systems that prevent any potential leakage of credentials.
If the mistyped domain does resolve, you can attempt to verify if there is an FTP server listening on the remote end. If there is no FTP server, it is unlikely that anyone is logging packets. However, if there is an FTP server, you should consider this as part of your risk analysis.
In addition, you can gather information about the mistyped domain from Google or a WHOIS lookup. If the domain appears to host questionable content, it may be advisable to change your password. Gathering more information about the domain will help in your risk analysis.