Date: Fri, 23 Jun 2000 16:29:55 -0700 From: Matt Miller <matt.miller@thelinuxstore.com> To: Keith Stevenson <k.stevenson@louisville.edu> Cc: Mike Tancsa <mike@sentex.ca>, Garrett Wollman <wollman@khavrinen.lcs.mit.edu>, freebsd-security@FreeBSD.ORG Subject: Re: Fwd: WuFTPD: Providing *remote* root since at least1994 Message-ID: <20000623162955.A72949@daffy.mics.net> In-Reply-To: <20000623163411.A1412@osaka.louisville.edu>; from k.stevenson@louisville.edu on Fri, Jun 23, 2000 at 04:34:11PM -0400 References: <Pine.BSF.4.21.0006222230390.65791-100000@achilles.silby.com> <4.2.2.20000622201823.0479a690@mail.sentex.net> <Pine.BSF.4.21.0006222230390.65791-100000@achilles.silby.com> <200006231713.NAA49665@khavrinen.lcs.mit.edu> <3.0.5.32.20000623154848.02d2d6c0@marble.sentex.ca> <20000623163411.A1412@osaka.louisville.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jun 23, 2000 at 04:34:11PM -0400, Keith Stevenson wrote: > On Fri, Jun 23, 2000 at 03:48:48PM -0400, Mike Tancsa wrote: > > What about > > > > --enable-paranoid > > > > as part of the config ? As so much seems to be related to the site exec > > command, perhaps its best to just disable this ? > > While I'm all for actually fixing the problems in the code, I've found that > the --enable-paranoid options to be a good one. I've been tinkering around > with the exploit and the paranoid option seems to defend against it. I don't > think that any of my users will miss the SITE EXEC commands. > If one were interested in improving the ftpd which ships with the base system, which features would make it a viable replacement those currently running wu-ftpd? Perhaps one- Matt To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000623162955.A72949>