i want to know how to brute force or crack telnet passwords or watever FTP even with bounce proxy attack ..whether its LAN attack or WAN connection attack

and if its LAN attack with bounce proxy ...will it be appear like it coming from WAN

Two things-

In a "bounce attack," you need to have access to an FTP site first.  Basically you connect into an FTP server and then use that server to execute your brute force attack.  A flaw in the FTP design allows arbitrary communication from one connection so you cannot be detected without the FTP server being traced first.

Secondly, this theoretically is the same as using netcat relays.  Just set up a relay and then execute your brute force attack at the relay.

Does this make sense?

yes make sense ..however

with netcat relays u need to penetrate pc first and setup netcat relay on this machine right ??

what i mean is not to scan like that NMAP options with FTP bounce i know this one and not that option in METASPLOIT

but

i mean that option in hydra ....hydra can crack telnet and ftp and smtp via FTP bounce right ??

but i can't find open FTP servers to do that and if i found secure 1 still the tracing will be easy because its just 1 server

not like chains of proxies and thats what i meant

1st - where can i find open FTP server to try this ?
2nd - is there a way to cracking via chains of proxies

Most FTP servers should have remedied this, but you can often accomplish this method with network printers...