Re: choix serveur ftp
Michel Parlebas a écrit, jeudi 15 janvier 2004, à 06:36 :
[...]
> PureFTPd : que peut-on lui reprocher ?
Rien(*), si l'on en croit debian-security (depuis janvier 2000)
New Debian wu-ftpd packages released
[DSA-016-1] New version of wu-ftpd released
[DSA-016-2] Correction: New version of wu-ftpd released
[DSA-016-3] Correction: New version of wu-ftpd released
[DSA-029-1] New version of proftpd released
[DSA 029-2] New proftpd packages for m68k available
[DSA-032-1] proftp runs as root, /var symlink removal
[DSA-032-2] proftp runs as root, /var symlink removal
[DSA-055-1] gftp remote exploit
[DSA-077-1] squid FTP PUT problem
[DSA 084-1] New gftp packages won't display the password
[DSA-087-1] wu-ftpd buffer overflow in glob code
[DSA 281-1] New xftp packages fix arbitrary code execution
[DSA-314-1] New atftp packages fix buffer overflow
[DSA-338-1] New proftpd packages fix SQL injection
[DSA-357-1] New wu-ftpd packages fix buffer overflow
[DSA-377-1] New wu-ftpd packages fix insecure program execution
[DSA 406-1] New lftp packages fix arbitrary code execution
(*) à part être du FTP :)
--
Jacques L'helgoualc'h
Reply to: