Date: Fri, 10 Dec 2010 16:47:30 -0500 From: Jerry Bell <jerry@nrdx.com> To: freebsd-questions@freebsd.org Subject: Re: Runaway ProFTP? Message-ID: <4D029FF2.9020305@nrdx.com> In-Reply-To: <740D0EA5-1F2A-486C-B231-11F25BB3AC59@cwis.biz> References: <1560F156-B3C8-4986-980C-8B6175C49683@d3photography.com> <740D0EA5-1F2A-486C-B231-11F25BB3AC59@cwis.biz>
next in thread | previous in thread | raw e-mail | index | archive | help
I have been having this happen a few times per week for the past few weeks. I believe it is caused by someone attacking proftpd. I noticed today that there is an updated version - 1.3.3c that fixes a vulnerability that they may have been trying to exploit. When I looked at the process list, I would see around 20 proftpd's, each with a high amount of CPU used, and connected to a specific IP. I'd firewall off those IPs and kill off proftpd/restart. Knock on wood, I have not had that happen since upgrading to 1.3.3c, but that may just be because no one has tried again yet. Jerry On 12/10/2010 4:39 PM, Ryan Coleman wrote: > Does anyone have any ideas? > > On Dec 9, 2010, at 3:12 PM, Ryan Coleman wrote: > >> Dear list, >> >> Has anyone else had experience with ProFTP 1.3.3a running away with processes? I installed it about 2 months ago with a new server build and over the course of the last three weeks I've had to forcibly kill, wait and restart the service every one-to-three days and sucking up between 20% and 80% of my system resources. >> >> I've attempted to change the logging in hopes to track down what is causing the problems but I have not been successful. Additionally it won't connect after a restart through Filezilla but using Terminal on my MBP it will connect in the CLI. >> >> It's not the end of the world (for me) but it is for my staff when they have to upload large numbers of photos. >> >> Thanks, >> Ryan >> >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4D029FF2.9020305>