Re: proftpd exploit??
yoros@terra.es writes:
> Ok. I think that this thing is considered a DoS attack...
> This "attack" can be turned off adding the following line to the
> configuration file (- proftpd.conf -):
[weikusat@karfinux]:/var/log $grep ^ftp /etc/security/limits.conf
ftp hard rss 8192
Even with proftpd's broken PAM support, this will work, 'cos it at
least calls pam_session* (which in turn calls closelog(3)...)
> Thanks to "proftpd",
which someone from South Corea segfaulted for hours on end a while
ago. Since then, we are running a modified linux-ftpd...
--
SIGSTOP
Reply to: