At 05:22 PM 11/28/01 -0800, Greg Wiley wrote: >According to /., wu-ftp has a vulnerability that >allows root access to files. Check out: > >http://www.securityfocus.com/archive/1/242750 > >Debian 2.2 is on the list. > >Apologies if this has been discussed already. >
Apparently the maintainer is working on it slashdot has picked up the story so world+dog is no aware of it. Does this effect wu-ftpd's that don't allow anonymous access? i.e. if only user's can log on, and I trust my users, can I stop stressing about it until the fixed version is available? John
