ProFTPD potential security hole

Discussion in 'Server Operation' started by domino, Aug 18, 2005.

  1. domino

    domino New Member

    I have had this message lurking on top of my WHM Panel. Maybe some my take hed to the warning since most of us do use it :)

     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    Hello,

    as far as i know is this security hole related only to SQL-based installs. ISPConfig does not use the SQL functions in proftpd. But maybe anyone else knows if also non-sql setups are affected.

    Till
     
  3. till

    till Super Moderator Staff Member ISPConfig Developer

    Maybe a switch to pureftpd as option makes sense for the next versions because proftpd has a long history of bugs :(
     
  4. domino

    domino New Member

    YES PLEASE!! And as far as I know, It's faster with login and handshakes. Plus it uses less memory than proftpd. That would be great! How about just add it as a plug-in as you did with phpMyAdmin, and Webmail? Is that feasable?

    Edit: PS. Even better glftpd? :D I would love to run scripts on my ftp client without having to log into shell :cool: Adn there are so many other things you can do with glftpd :D
     
    Last edited: Aug 19, 2005

Share This Page