Date: Wed, 26 Nov 1997 11:15:25 +1030 From: Mike Smith <mike@smith.net.au> To: warpy <warpy@suburbia.com.au> Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: Possible problem with ftpd 6.00 Message-ID: <199711260045.LAA01546@word.smith.net.au> In-Reply-To: Your message of "Tue, 25 Nov 1997 09:58:56 %2B1100." <Pine.BSF.3.96.971125094506.991A-100000@typhoon>
next in thread | previous in thread | raw e-mail | index | archive | help
(redirected to -hackers, as this is not really appropriate for -security) > This morning I noticed something I didn't think should be happening. That > being the password being used by an anonymous user logging into ftp > showing up in the process list. This is intentional, as it provides a possibly useful piece of information. > However this did not happen when I logged > in as a normal user. Obviously there isn't much upon first glance that can > be done to exploit it (at least I think so), but does it need to occur at > all? What possible problems can you see with it? mike
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199711260045.LAA01546>