[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: proftpd exploit??

yoros@terra.es writes:
> Ok. I think that this thing is considered a DoS attack...
> This "attack" can be turned off adding the following line to the
> configuration file (- proftpd.conf -):

[weikusat@karfinux]:/var/log $grep ^ftp /etc/security/limits.conf  
ftp             hard    rss             8192

Even with proftpd's broken PAM support, this will work, 'cos it at
least calls pam_session* (which in turn calls closelog(3)...)

> Thanks to "proftpd",

which someone from South Corea segfaulted for hours on end a while
ago. Since then, we are running a modified linux-ftpd...


Reply to: