lundbergVR.NET

• Next message: Matthew Kirkwood: "Re: Linux capability bounding set weakness"
• Previous message: Jesper M. Johansson: "FW: IE 5 and Access 2000 vulnerability - executing programs"
• In reply to: Tomasz Grabowski: "Re: WuFTPD: Providing *remote* root since at least1994"
• Next in thread: Bernhard Rosenkraenzer: "Re: WuFTPD: Providing *remote* root since at least1994"
• Next in thread: Peter Pentchev: "Re: WuFTPD: Providing *remote* root since at least1994"
• Reply: Gregory A Lundberg: "Re: WuFTPD: Providing *remote* root since at least1994"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jun 27, 2000 at 05:29:43PM +0200, Tomasz Grabowski wrote:

> Anyway I made a patch for that bug so You don't need to change Your
> wu-ftpd-academ to wu-ftpd if You don't want.

Bascially, all your patch does is prevent an attack which isn't (currently)
being used very widely on a version of the server which is vulnerable to at
least two attacks which ARE.

The smart thing to do is immedeately disconnect your 'wu-ftpd-academ' host
and scan for root breakins. Then, when you've cleaned out the kiddies and
regained control of your host, upgrade to 2.6.0 and apply the patch.

--
Gregory A Lundberg              WU-FTPD Development Group
1441 Elmdale Drive              lundbergwu-ftpd.org
Kettering, OH 45409-1615 USA    1-800-809-2195

• Next message: Matthew Kirkwood: "Re: Linux capability bounding set weakness"
• Previous message: Jesper M. Johansson: "FW: IE 5 and Access 2000 vulnerability - executing programs"
• In reply to: Tomasz Grabowski: "Re: WuFTPD: Providing *remote* root since at least1994"
• Next in thread: Bernhard Rosenkraenzer: "Re: WuFTPD: Providing *remote* root since at least1994"
• Next in thread: Peter Pentchev: "Re: WuFTPD: Providing *remote* root since at least1994"
• Reply: Gregory A Lundberg: "Re: WuFTPD: Providing *remote* root since at least1994"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]