Bug#335902: proftpd doesn't honor RFC959

Wed, 26 Oct 2005 10:03:39 -0700 

tags 335902 upstream
forward [EMAIL PROTECTED]
thanks

On Wed, Oct 26, 2005 at 06:24:44PM +0200, Fabrice LORRAIN wrote:
> Package: proftpd
> Version: 1.2.10-15sarge1.0.1
> Severity: important
> 
> 
> Hello,
> 
> proftpd doesn't send error code 421 when there is no more session
> allowed (from rfc959, section 4.2.1 "421 Service not available, closing
> control connection.")
> 
> Instead, proftpd close the tcp session (FIN,ACK) from the server
> without any ftp error code.
> 
> This breaks some client. We hit this here with some of our workstations
> running MacAfee virusscan antivirus. During the virus base upgrade a
> process FrameworkService get stuck in the ftp transfert and eat 100%
> of the cpu on the worstation.
> 
> Changing proftpd to vsftpd on the server side solved the problem.
> 
> You can reproduce the pb with the default anonymous conf in debian and
> MaxInstances and MaxClients set to 1.
> 
> Open an ftp session, tcpdump for a second session.
> 
> A tcpdump diff with the same kind of configuration for vsftpd shows a
> "ftp 421 response" from the server.
> 
> Seems proftpd is a bit light on section 4.2.* of RFC959.
> 
> @+,
>       Fab
> 
> 
> -- System Information:
> Debian Release: 3.1
> Architecture: i386 (i686)
> Kernel: Linux 2.6.13.3-caladan
> Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
> 
> Versions of packages proftpd depends on:
> ii  adduser              3.63                Add and remove users and groups
> ii  debconf              1.4.30.13           Debian configuration management 
> sy
> ii  libc6                2.3.2.ds1-22        GNU C Library: Shared libraries 
> an
> ii  libcap1              1:1.10-14           support for getting/setting 
> POSIX.
> ii  libpam0g             0.76-22             Pluggable Authentication Modules 
> l
> ii  libssl0.9.7          0.9.7e-3            SSL shared libraries
> ii  libwrap0             7.6.dbs-8           Wietse Venema's TCP wrappers 
> libra
> ii  netbase              4.21                Basic TCP/IP networking system
> ii  proftpd-common       1.2.10-15sarge1.0.1 Versatile, virtual-hosting FTP 
> dae
> ii  ucf                  1.17                Update Configuration File: 
> preserv
> 
> -- debconf information:
> * shared/proftpd/warning:
> * shared/proftpd/inetd_or_standalone: standalone

-- 
Francesco P. Lovergine


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to