Processing commands for cont...@bugs.debian.org:
> severity 626524 normal
Bug #626524 [proftpd-basic] proftpd-basic: DefaultAddress 127.0.0.1 not obeyed
Severity set to 'normal' from 'grave'
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
626524: http://bugs.debi
It seems the observed behaviour is almost as designed, and in order to
restrict access to localhost only, one needs to also set
SocketBindTight on
in addition to
DefaultAddress 127.0.0.1
After adding "SocketBindTight on", netstat shows
# netstat -tlpe
Active Internet connect
Package: proftpd-basic
Version: 1.3.3a-6squeeze1
Severity: grave
Tags: security
Justification: user security hole
After adding the "DefaultAddress 127.0.0.1" in the server config section and
restarting proftpd-basic, I can see
# /etc/init.d/proftpd restart
Stopping ftp server: proftpd.
Starting
3 matches
Mail list logo
