From owner-freebsd-security Thu Jun 22 20:38:56 2000 Delivered-To: freebsd-security@freebsd.org Received: from cage.simianscience.com (cage.simianscience.com [64.7.134.1]) by hub.freebsd.org (Postfix) with ESMTP id 1A5EE37B854 for ; Thu, 22 Jun 2000 20:38:48 -0700 (PDT) (envelope-from mike@sentex.net) Received: from chimp ([192.168.0.2]) by cage.simianscience.com (8.9.3/8.9.3) with ESMTP id XAA02508; Thu, 22 Jun 2000 23:38:41 -0400 (EDT) (envelope-from mike@sentex.net) Message-Id: <4.2.2.20000622233159.0351a7d8@mail.sentex.net> X-Sender: mdtancsa@mail.sentex.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.2.2 Date: Thu, 22 Jun 2000 23:34:26 -0400 To: Mike Silbersack From: Mike Tancsa Subject: Re: Fwd: WuFTPD: Providing *remote* root since at least1994 Cc: freebsd-security@FreeBSD.org In-Reply-To: References: <4.2.2.20000622201823.0479a690@mail.sentex.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 10:34 PM 6/22/2000 -0500, Mike Silbersack wrote: >Hm, given the number of explots for wu-ftpd in the last year and a half, I >wonder if it should just be removed from the ports tree based on the >assumption that there are more, and it's just a risk. > >(Does anyone actually still run it?) A lot of people run it still. I would use the stock ftpd with FreeBSD if there was a better way to control anon uploads. ---Mike -------------------------------------------------------------------- Mike Tancsa, tel +1 519 651 3400 Network Administration, mike@sentex.net Sentex Communications www.sentex.net Cambridge, Ontario Canada www.sentex.net/mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message