[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Re: [cobalt-security] FTPD DoS

Subject: [cobalt-users] Re: [cobalt-security] FTPD DoS
From: "Dave" <dridel@xxxxxx>
Date: Tue Mar 20 11:42:47 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Recent comments about the current proFTP concerns:

>There is now a published workaround which I've tested on both RaQ3'sand
>RaQ4's:

>http://bugs.proftpd.org/show_bug.cgi?id=1066

>Basically, you need to add the follwing filter to your
/etc/proftpd.conf
>file with the <Global></Global> directive:
>
>     DenyFilter   \*.*/
>
> > Where in the .conf is that inserted???
> > Before
> >
> > # Restore file permissions capability to site administrator ???
>
> I've done it so it's in the section following that line:
>
> # Restore file permissions capability to site administrator
>  <Global>
>    AllowChmod                    on
>    DenyFilter                   \*.*/
>  </Global>
>
> >From the information on BugTraq it looks like this isn't actually a
bug in
> the FTP server as such (it affects many FTP servers) but more to do
with the
> actual shell that it runs in. You can use the DoS within TELNET/SSH
using
> "ls" from the shell prompt too, so you should be VERY careful about
giving
> away shell access to users.

This was on cobalt-security.....just lookin out for people here that may
not be
subscribed to that list.....

Dave R

References:
- [cobalt-users] Re: [cobalt-security] FTPD DoS (x-posted to cobalt-users)
  - From: baltimoremd
- [cobalt-users] Re: [cobalt-security] FTPD DoS (x-posted to cobalt-users)
  - From: Jonathan Michaelson

Prev by Date: [cobalt-users] upgrading lynx for SSL
Next by Date: [cobalt-users] Site user:group permissions
Previous by thread: [cobalt-users] Re: [cobalt-security] FTPD DoS (x-posted to cobalt-users)
Next by thread: [cobalt-users] Sendmail for Hire

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index