On Sun, Jul 03, 2005 at 10:57:01PM +0200, Ola Lundqvist wrote: > Hello > > I have discovered the same problem. > > The error occur when: > * Have run for quite some time (restart do not help). > * DefaultRoot ~ !adm > and the user is not part of adm group. > * DelayEngine on (default) > > The problem vanish when I do not enable the default root directive > for that user or if I disable the delayengine. > > I just want to inform that the problem still exist on sarge, > which you probably already know. > > Can't this be a potential security problem? A fix would be greatly appriciated > for a point release. > > ii proftpd 1.2.10-15 Versatile, virtual-hosting FTP > daemon > > Regards, >
Yes, already known, you should use at least the sarge backport of -18 at my repo http://people.debian.org/~frankie/debian/sarge/ to avoid the problem. Incidentally I need also to add a couple of sec patches to align to sid -20. Hopefully a modified version would enter sarge point release if joey will accept it. -- Francesco P. Lovergine -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
