From owner-freebsd-security Tue May 22 20:46: 8 2001 Delivered-To: freebsd-security@freebsd.org Received: from server1.link-net.com (link-net.com [209.10.61.231]) by hub.freebsd.org (Postfix) with ESMTP id 4369D37B424 for ; Tue, 22 May 2001 20:46:05 -0700 (PDT) (envelope-from scott@link-net.com) Received: from scott1 (scott1.link-net.com [209.10.61.241]) by server1.link-net.com (Post.Office MTA v3.5.3 release 223 ID# 0-52894U200L100S0V35) with ESMTP id com for ; Tue, 22 May 2001 20:46:04 -0700 Reply-To: From: "Scott Raymond" To: Subject: RE: Is there a ftp vuln in 4.3-STABLE Date: Tue, 22 May 2001 20:46:02 -0700 Keywords: FreeBSD Organization: LinkAmerica Communications Message-ID: <003401c0e33a$e44fb090$f13d0ad1@linknet.com> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: quoted-printable X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2462.0000 Importance: Normal Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Seeing as how there is no corroborating evidence to support this "exploit", only second-hand hearsay, I'd say this is more of a FUD troll than an actual security warning. -- Scott =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D Scott Raymond LinkAmerica Communications http://soundamerica.com =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D > -----Original Message----- > From: owner-freebsd-security@FreeBSD.ORG=20 > [mailto:owner-freebsd-security@FreeBSD.ORG] On Behalf Of Alex > Sent: Tuesday, May 22, 2001 7:50 PM > To: Kris Kennaway > Cc: Ryan; freebsd-security@FreeBSD.ORG > Subject: Re: Is there a ftp vuln in 4.3-STABLE >=20 >=20 > Indeed, I'm not at all worried. I just was wondering if=20 > there was any > additional information available regarding this specific alledged > vulnerability. >=20 > -Alex >=20 > > On Tue, May 22, 2001 at 08:26:29PM -0400, Alex wrote: > > > Is this a FreeBSD specific FTP vulnerability? > > > > > > -Alex > > > > > > On Tue, 22 May 2001, Ryan wrote: > > > > > > > There is an ftp vuln... I do not have any details on it=20 > sorry.. Some kinda > > > > overflow.. I would run proftpd > > > > No-one has informed the security-officer about any new vulnerability > > in FreeBSD (or for that matter, about third party ftpd ports). It's > > probably worthwhile not flying into a panic until someone actually > > provides some corroborating evidence. > > > > Kris > > >=20 >=20 > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message >=20 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message