wu-ftpd security problem

Jerome Henry · ‎06-25-2003

Adding to friends advice, and paraphrasing a bit, it depends mainly on who'll conect to your ftp server.
If it's an inner company ftp server, then wu-ftpd will do the job, as said before, as long as you upgrade to a new version, in which no bug is found yet.

Your sca, looking like nmap or nessus, may warn again, on the risk linked to ftp server, but you just have to quota upload directory to be safe.

wu-ftpd have many good configurations examples :
http://www.wu-ftpd.org/HOWTO/

vsftpd is knwon as sure, use it if your ftp server is connected outside. I also like very muc pro-ftpd, as its configuration file looks like apache a lot, which is friendly, and is also considered as pretty sure :

http://proftpd.linux.co.uk/

hth

J

You can lean only on what resists you...

Bill Douglass · ‎06-25-2003

I don't believe RH 6.0 has xinetd.

To disable ftpd, you can either remove the entry from /etc/inetd.conf, or add the following line to /etc/hosts.deny:

in.ftpd: ALL

This will prevent anyone from logging in via ftp.

jack Hu_1 · ‎06-26-2003

Dear Sir:
I first update wu-ftpd to 2.6 version.
I could the scan now.
And I will try to upgrade my OS too.
Also the SSH,.....
Very thanks for all your help.
Jack

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Discussions

Forums

Discussions

Forums

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

wu-ftpd security problem

Re: wu-ftpd security problem

Re: wu-ftpd security problem

Re: wu-ftpd security problem