ProFTPd has a *LONG* list of bugs, security incidents and compatibility
Thats new to me: when I search www.cert.org for proftp, there is not one hit.
Searching cert archives might not be a good idea, then. For instance, take a look at the code, maybe compare it with code from vsftpd (Chris Evans) or postfix. Decide then.
issues. I would not trust that software.
We had proftpd running on ftp.suse.com for a few weeks. I have added a few patches that made it possible to run the server with 500 instances, but 600 knocked the box out - too much system call overhead, /proc accesses in the file transfer loop, name it, you get it.
Which ftp server would you recommend instead?
We are running wuftpd-2.4 on ftp.suse.com now, the daemon that is installed as /usr/sbin/wu.ftpd. It is the old version, not 2.6. Thomas Biege made a comprehensive audit some time ago, and since then there has been no bug in it. 5:12am up 60 days, 13:38, 2 users, load average: 3.30, 2.86, 2.42 The load is a result from 18 concurrent rsync processes. We have only 370 sessions right now, the output is near 48 MBit/s. As an additional solution there might be the BSD-derived ftpd (in.ftpd). It works quite nicely, it's slim and fast, and it does its job. Roman.