Date: Tue, 16 Oct 2001 15:18:12 -0600 From: Scott Gerhardt <scott@gerhardt-it.com> To: Sol <sol@cyberglobe.net> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ftp security Message-ID: <3BCCA414.477CCC8A@gerhardt-it.com> References: <20011016195434.58399.qmail@web11705.mail.yahoo.com> <3BCC9F3D.B91ADBB3@gerhardt-it.com> <20011016175057.A19266@underzen.org>
next in thread | previous in thread | raw e-mail | index | archive | help
There was an /incoming/Taggeg/by/PS2H/ directory with nothing in it Sol wrote: > > Hi, > > I've had this sort of thing happen myself. Both times it turned out to be pirates that basically "wardial" looking for anonymous ftp sites with decent badwidth to host their "warez". They'll use it until you discover them stealing the bandwidth and then move on. Whether or not you want to reinstall is determined by your paranoia and/or security policies. Did you discover what the files were? > > -- > Sol > > Somewhere around Tue, Oct 16, 2001 at 02:57:33PM -0600, Scott Gerhardt wrote: > > Thanks Tim, > > > > Wouldn't a complete reinstall be overkill when it only "appears" that > > someone put some mysterious files in an anonymous ftp incoming > > directory? > > > > It's not like someone cracked into the system, putting files in > > /var/ftp/pub/incoming is normal. Unless, the ftpd that comes with > > FreeBSD 4.4-Release has a gaping security hole I don't know about. > > > > The default ftpd that comes with FreeBSD chroot's anonymous users and > > has builtin commands so it should be quite secure, right? > > > > > > - Scott > > -- ------------------------------------ Scott Gerhardt, P.Geo. Gerhardt Information Technologies 306.227.5290 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3BCCA414.477CCC8A>