[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: proftpd exploit??

Zak Kipling wrote:

> On Thu, 24 May 2001, Andres Herrera wrote:
> > I've tried to exploit it by login and sending:
> > ls ../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../
> > and suddenly it began eating memory and getting slow all the system.
> ...
> > Any solution??
> Resource limits on the ftp server process?

Or a DenyFilter of \*.*/ as is recommended on the proftpd.org web site.

Jamie Heilman                   http://audible.transient.net/~jamie/
"...thats the metaphorical equivalent of flopping your wedding tackle 
 into a lion's mouth and flicking his lovespuds with a wet towel, pure 
 insanity..."						-Rimmer

Reply to: