Mailinglist Archive: opensuse-security (465 mails)

< Previous Next >
Re: [suse-security] SuSE Security Announcement: wuftpd (SuSE-SA:2001:043)
  • From: Peter Nixon <nix@xxxxxxxxxxxxxxxx>
  • Date: Thu, 29 Nov 2001 14:58:48 +0200
  • Message-id: <20011129145848.106dd13e.nix@xxxxxxxxxxxxxxxx>
On Thu, 29 Nov 2001 09:53:42 +1100 (EST)
adam <adamd@xxxxxxxxxxxxxxxxxxx> wrote:

>
> Agreed Kurt,
> HTTP is a much nicer protocal anyway and if i REALLY have to use plain FTP
> then its the OpenBSD daemon.
>
> BTW: an excellent doc
>
> Adam
>
> On Thu, 29 Nov 2001, Kurt Seifried wrote:
>
> > None of the existing FTP servers with the exceptions of VSFTPD, and maybe
> > OpenBSD's FTPD are even remotely classifiable as "hardened". ProFTPD is a
> > huge mess. Every single effort at a UNIX/Windows ftp server I have ever seen
> > is a disaster. The FTP protocol itself is a disaster, for clients and
> > servers:
> >
> > http://www.seifried.org/security/network/20010926-ftp-protocol.html
> >
> > All in all it's just horrible. For bulk transfers consider apache + wget,
> > for users ssh scp/sftp or https.

Personally I prefer PureFTPD. (http://www.pureftpd.org/)


--
Viel SpaƟ

Nix - nix@xxxxxxxxxxxxxxxx
http://www.susesecurity.com

< Previous Next >