Careful people. Appearently there's a new proftpd root exploit 0-day. I dont know if the "perfect" setups from Howtoforge are vurnurable, hopefully wont be if they're run in jail environment. However, I'd be a little bit careful the next following days.
Can you supply a link to where this exploit is mentioned? My Google search returned: This is only applicable for ISPConfig users who have modified the default install. Also this is a rather "old" security notice (Dec 13, 2006), so I'm not sure if you refer to this exploit.
It's a bellua.com security consultant who notify me of this exploit. I dont have the actual source to this exploit, but I'd just be a bit careful the coming days until they've issued a patch to this issue.
As far as I nkow, the controls feature is not activated in any of the perfect setup guides. But every administrator should install all available updates and patches from his linux distribution regularily.
