Package: proftpd
Version: 1.2.10-15sarge1.0.1
Severity: important
Hello,
proftpd doesn't send error code 421 when there is no more session
allowed (from rfc959, section 4.2.1 "421 Service not available, closing
control connection.")
Instead, proftpd close the tcp session (FIN,ACK) from the server
without any ftp error code.
This breaks some client. We hit this here with some of our workstations
running MacAfee virusscan antivirus. During the virus base upgrade a
process FrameworkService get stuck in the ftp transfert and eat 100%
of the cpu on the worstation.
Changing proftpd to vsftpd on the server side solved the problem.
You can reproduce the pb with the default anonymous conf in debian and
MaxInstances and MaxClients set to 1.
Open an ftp session, tcpdump for a second session.
A tcpdump diff with the same kind of configuration for vsftpd shows a
"ftp 421 response" from the server.
Seems proftpd is a bit light on section 4.2.* of RFC959.
@+,
Fab
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.13.3-caladan
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages proftpd depends on:
ii adduser 3.63 Add and remove users and groups
ii debconf 1.4.30.13 Debian configuration management sy
ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an
ii libcap1 1:1.10-14 support for getting/setting POSIX.
ii libpam0g 0.76-22 Pluggable Authentication Modules l
ii libssl0.9.7 0.9.7e-3 SSL shared libraries
ii libwrap0 7.6.dbs-8 Wietse Venema's TCP wrappers libra
ii netbase 4.21 Basic TCP/IP networking system
ii proftpd-common 1.2.10-15sarge1.0.1 Versatile, virtual-hosting FTP dae
ii ucf 1.17 Update Configuration File: preserv
-- debconf information:
* shared/proftpd/warning:
* shared/proftpd/inetd_or_standalone: standalone
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
