[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] ProFTPd exploits

Subject: Re: [cobalt-users] ProFTPd exploits
From: flash22@xxxxxxx
Date: Tue Feb 27 16:09:04 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Tue, 27 Feb 2001, Danny Daniels wrote:
> I am reading allot of stuff related to ftp exploits. Is this a  general
> problem with the ftp protocal or  the version that cobalt uses ProFTPd

It's a problem with the particular version (and older)

http://www.proftpd.org/security.html

> Is there a safe version or rev level?

 yes, download cobalt's security update

http://www.cobalt.com/support/download/index.html

> Or maybe another daemon such as wu-ftpd

wu-ftp doesn't have a particularly better reputation, see

http://www.cert.org/advisories/CA-2000-13.html
http://www.cert.org/advisories/CA-99-13-wuftpd.html
http://www.cert.org/advisories/CA-1999-03.html
http://www.cert.org/advisories/CA-97.27.FTP_bounce.html
http://www.cert.org/advisories/CA-94.07.wuarchive.ftpd.trojan.horse.html

The grass isn't always greener on the other side -/

gsh

References:
- [cobalt-users] ProFTPd exploits
  - From: Danny Daniels

Prev by Date: [cobalt-users] RAQ4R FOR SALE
Next by Date: Re: [cobalt-users] RAQ4 Stats
Previous by thread: [cobalt-users] ProFTPd exploits
Next by thread: Re: [cobalt-users] "Sort of" hacked?? Raq3 with some problems...

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index