Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Multiple-Vendor-FTP-Vuln. (old?)

From: Scott Dier <dieman () ringworld org>
Date: Mon, 20 Aug 2001 15:35:06 -0500
* Enrico Kern <IphantomI () web de> [010820 12:31]:

Hi,

i tested an old proftpd bug (ls /../*/../*/../*/../*/../*/../*/../*) on =


http://www.proftpd.org/critbugs.html

Add "DenyFilter \*.*/" to your config.

No software patch beats actual systems administration.

-- 
Scott Dier <dieman () ringworld org> <sdier () debian org>
http://www.ringworld.org/  #linuxos () irc openprojects net
Previous By Date Next
Previous By Thread Next

Current thread: