Re: proftpd exploit??
Zak Kipling wrote:
> On Thu, 24 May 2001, Andres Herrera wrote:
>
> > I've tried to exploit it by login and sending:
> > ls ../*/../*/../*/../*/../*/../*/../*/../*/../*/../*/../
> > and suddenly it began eating memory and getting slow all the system.
> ...
> > Any solution??
>
> Resource limits on the ftp server process?
Or a DenyFilter of \*.*/ as is recommended on the proftpd.org web site.
http://www.proftpd.org/critbugs.html
--
Jamie Heilman http://audible.transient.net/~jamie/
"...thats the metaphorical equivalent of flopping your wedding tackle
into a lion's mouth and flicking his lovespuds with a wet towel, pure
insanity..." -Rimmer
Reply to: