From owner-freebsd-questions Tue Feb 16 12:14:31 1999 Delivered-To: freebsd-questions@freebsd.org Received: from caladan.tdx.co.uk (caladan.tdx.co.uk [195.188.177.4]) by hub.freebsd.org (Postfix) with ESMTP id 6A054117B5 for ; Tue, 16 Feb 1999 12:14:24 -0800 (PST) (envelope-from kpielorz@tdx.co.uk) Received: from tdx.co.uk (lorca-tx.tdx.co.uk [195.188.177.242]) by caladan.tdx.co.uk (8.9.3/8.9.3) with ESMTP id UAA01386; Tue, 16 Feb 1999 20:13:48 GMT Message-ID: <36C9D17B.70EB0F9A@tdx.co.uk> Date: Tue, 16 Feb 1999 20:13:47 +0000 From: Karl Pielorz Organization: TDX - The Digital eXchange X-Mailer: Mozilla 4.5 [en] (WinNT; I) X-Accept-Language: en MIME-Version: 1.0 To: Jeff Gray Cc: Questions at FreeBSD Subject: Re: ftp vulnerability References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Jeff Gray wrote: > > Running 2.2.6, standard install. This includes the ftp server, > FTP server (Version 6.00) > > The recent CERT advisory on the vulnurability of certain ftp servers is > unclear, at least to me, on whether FreeBSD is effected and if so which > ftp servers are effected. Their explanation is based on the OS. > > I posted to security about wu-ftp. Is there a security issue with Version > 6.00? AFAIK the ftpd daemon that ships with FreeBSD 2.2.X etc. - is not related to the wu-ftpd, and proftpd daemons that were covered in that article... It only applies if you replace / install as well either ProFtpd or wu-ftpd (e.g. from the ports collection)... -Kp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message