From owner-freebsd-security Thu Nov 27 12:23:32 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id MAA20221 for security-outgoing; Thu, 27 Nov 1997 12:23:32 -0800 (PST) (envelope-from owner-freebsd-security) Received: from nomis.simon-shapiro.org (nomis.i-Connect.Net [206.190.143.100]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id MAA20189 for ; Thu, 27 Nov 1997 12:23:26 -0800 (PST) (envelope-from shimon@nomis.Simon-Shapiro.ORG) Received: (qmail 27241 invoked by uid 1000); 27 Nov 1997 20:22:50 -0000 Message-ID: X-Mailer: XFMail 1.2-beta-111997 [p0] on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <3573.880574299@time.cdrom.com> Date: Thu, 27 Nov 1997 12:22:50 -0800 (PST) Reply-To: shimon@simon-shapiro.org Organization: The Simon shapiro Foundation From: Simon Shapiro To: "Jordan K. Hubbard" Subject: Re: Possible problem with ftpd 6.00 Cc: freebsd-security@FreeBSD.ORG, warpy , "Daniel O'Callaghan" , Craig Spannring Sender: owner-freebsd-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On 26-Nov-97 Jordan K. Hubbard wrote: >> If they really did type the email address it's not very exploitable. >> Unfortunatly a lot of people type their real password when prompted >> for a password. > > These people are too stupid to remain computer users. :-) > > Jordan if ( strncmp(login, "ftp, MAX_LOGIN) && strncmp(login "anonymous", MAX_LOGIN) ) { printf("Password; ") } else { printf("Your E-Mail Address, please "); } No ?