From owner-freebsd-questions Wed Jan 24 11:22:38 2001 Delivered-To: freebsd-questions@freebsd.org Received: from karon.dynas.se (karon.dynas.se [192.71.43.4]) by hub.freebsd.org (Postfix) with SMTP id AD6FD37B401 for ; Wed, 24 Jan 2001 11:22:20 -0800 (PST) Received: (qmail 59410 invoked from network); 24 Jan 2001 19:22:19 -0000 Received: from spirit.sto.dynas.se (HELO spirit.dynas.se) (172.16.1.10) by karon.sto.dynas.se with SMTP; 24 Jan 2001 19:22:19 -0000 Received: (qmail 1085 invoked from network); 24 Jan 2001 19:22:18 -0000 Received: from explorer.rsa.com (10.81.217.59) by spirit.dynas.se with SMTP; 24 Jan 2001 19:22:18 -0000 Received: (from mikko@localhost) by explorer.rsa.com (8.11.1/8.11.1) id f0OJMD812264; Wed, 24 Jan 2001 11:22:13 -0800 (PST) (envelope-from mikko) Date: Wed, 24 Jan 2001 11:22:13 -0800 (PST) From: Mikko Tyolajarvi Message-Id: <200101241922.f0OJMD812264@explorer.rsa.com> To: matrix@ipform.ru Cc: freebsd-questions@freebsd.org Subject: Re: Which is the most secure and reliable ftp daemon Newsgroups: local.freebsd.questions References: <000901c08629$c674d320$0c00a8c0@ipform.ru> X-Newsreader: NN version 6.5.6 (NOV) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG In local.freebsd.questions you write: >I just audited my system for security and it came up that i am >running inetd ONLY because ftp daemon is needed. As for getting rid of inetd, check the "-D" flag in ftpd(8): it allows you to run ftpd stand-alone. [...] >Please, share your experience with different ftp daemons. >I need something very reliable, secure and configurable. >Currently i am thinking about wu-ftpd and proftpd, but both >of them have history of security flaws. >If i find, i could finaly turn off inetd and save myself some >RAM and maybe even tighten security. The stock ftpd in FreeBSD has had few security problems. If you want to be paranoid, you could always run it in a jail(8). The area where FreeBSD's ftpd looses is "configurable" -- depending on how many bells and whistles you need. $.02, /Mikko -- Mikko Työläjärvi_______________________________________mikko@rsasecurity.com RSA Security To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message