Re: ftp daemon

To: debian-user@lists.debian.org
Subject: Re: ftp daemon
From: Carey Evans <c.evans@clear.net.nz>
Date: 21 Nov 1998 11:46:26 +1300
Message-id: <[🔎] 87btm22da5.fsf@psyche.evansnet>
In-reply-to: Lawrence Walton's message of "Fri, 20 Nov 1998 14:20:56 -0800 (PST)"
References: <[🔎] Pine.LNX.3.96.981120141145.23199A-100000@the-penguin.otak-k.com>

Lawrence Walton <lawrence@otak-k.com> writes:

> Oh? I am running two FTP servers with the 2.1.12* kernels... what is the
> security feature?

[snip]

> auth.log:Nov 16 12:53:28 ns proftpd[29299]: module linuxprivs: capabilities '= cap_net_bind_service+ep'

I'm not especially familiar with what's involved.  In this case, I
would guess it lets proftpd use reserved ports (like 20 and 21,
ftp-data and ftp-control) without needing to be root.

This means that if there's any bug somewhere in proftpd, there's no
straightforward way to get root access to the box.

-- 
	 Carey Evans  http://home.clear.net.nz/pages/c.evans/

"Is there anyone who actually believes that USAicans are so modest or
intellectually honest as to be unable to find someone to sue?" - Cameron Laird

Reply to:

References:
- Re: ftp daemon
  - From: Lawrence Walton <lawrence@otak-k.com>

Prev by Date: Re: PPP daemon has died
Next by Date: Locale 'C'
Previous by thread: Re: ftp daemon
Next by thread: Compatability with Windows-only programs
Index(es):
- Date
- Thread