Re: ftpd - security thread ?
Le 13639ième jour après Epoch,
Lubos Rendek écrivait:
> Recently I have played with ftpd package from stable repository and I
> have discovered that every time the package gets installed it connects
> to certain IP address on port 80.
> running reverse dig command:
> dig -x 18.104.22.168
> ;; ANSWER SECTION:
> 22.214.171.124.in-addr.arpa. 21600 IN PTR poledra.it.net.au.
> I get poledra.it.net.au and a web browser reveals :
> "Hello. Welcome to the FTP archives of Informed Technology."
> This web page is run by company http://www.it.net.au.
> Can anyone explain why is this happening? Why is my box connecting to
> that IP address without me actually knowing about that?
Perhaps it's because ftp.wa.au.debian.org (aka poledra.it.net.au) is
listed in http://www.fr.debian.org/CD/http-ftp/ as a Debian mirror ?