TFTP is NOT a secure protocol… but it was never designed to be.
TFTP, or Trivial File Transfer Protocol is designed to be… trivial. It has no authentication, authorization, or any fancy abilities such as listing the directory of files you are looking at. TFTP was created as a “streamlined” way to send and receive files from devices, especially devices with little to “no” compute resources. For example; one common use is to load firmware and software packages to Cisco devices using an internally managed repository on a TFTP server. [Read More]