Date: Fri, 23 Jun 2000 12:19:10 -0300 (GMT) From: Fernando Schapachnik <fpscha@ns1.via-net-works.net.ar> To: johann@egenetics.com (Johann Visagie) Cc: fpscha@via-net-works.net.ar, security@FreeBSD.ORG Subject: Re: Passive FTP ports in ProFTPd Message-ID: <200006231519.MAA28360@ns1.via-net-works.net.ar> In-Reply-To: <20000623165656.D13039@fling.sanbi.ac.za> from Johann Visagie at "Jun 23, 0 04:56:56 pm"
next in thread | previous in thread | raw e-mail | index | archive | help
En un mensaje anterior, Johann Visagie escribió: > Fernando Schapachnik on 2000-06-23 at 10:48:40 -0300: > > > > I switched to ProFTPd due to the wu-ftpd exploit posted today. > > Despite the fact that ProFTPd is advertised as secure, it has had several > security scares and is generally regarded (at least among the people I to > talk to) as being a bad choice from a security perspective. > > See for instance what Dan Bernstein has to say about it: > http://cr.yp.to/publicfile.html (3/4 way down the page) Not very encouraging... The ones he mentions as "secure" lack most features I need. Any suggestion? (I can't use stock FreeBSD ftpd right now because it will require a lot of programming -- I need to maintain configuration compatibility accross platforms). Thanks! Fernando P. Schapachnik Administración de la red VIA NET.WORKS ARGENTINA S.A. fernando@via-net-works.net.ar (54-11) 4323-3333 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200006231519.MAA28360>