From owner-freebsd-security  Wed Apr 11  8:23:53 2001
Delivered-To: freebsd-security@freebsd.org
Received: from dzet.kmost.express.ru (dzet.kmost.express.ru [212.24.37.102])
	by hub.freebsd.org (Postfix) with ESMTP id C95CE37B424
	for <security@freebsd.org>; Wed, 11 Apr 2001 08:23:50 -0700 (PDT)
	(envelope-from gem@dzet.kmost.express.ru)
Received: from gem (helo=localhost)
	by dzet.kmost.express.ru with local-esmtp (Exim 3.22 #2)
	id 14nMRd-0001Av-00; Wed, 11 Apr 2001 19:22:09 +0400
Date: Wed, 11 Apr 2001 19:22:09 +0400 (MSD)
From: Maxim Giryaev <gem@express.ru>
X-Sender: gem@dzet.kmost.express.ru
To: Anton Vladimirov <admin128@mail.ru>
Cc: security@freebsd.org
Subject: Re: ftp vulnerability
In-Reply-To: <15739596567.20010411131004@mail.ru>
Message-ID: <Pine.BSF.4.21.0104111918420.243-100000@dzet.kmost.express.ru>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Wed, 11 Apr 2001, Anton Vladimirov wrote:

>   I run FreeBSD 4.0-RELEASE with all security patches applied.
>   Could anyone clearly explain how to fix the recent
>   ftpd hole for this version?

You can download all sourcess needed to make ftpd including libc part
ftp://ftp.dev.express.ru/pub/FreeBSD/utils/ftpd.tgz

cd libexec/ftpd && make

Maxim Giryaev



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message