bin/72508: ftp(1): Anyone can change root on anonymous ftp
edwin at FreeBSD.org
edwin at FreeBSD.org
Wed Aug 6 14:15:03 UTC 2008
Synopsis: ftp(1): Anyone can change root on anonymous ftp
State-Changed-From-To: open->closed
State-Changed-By: edwin
State-Changed-When: Wed Aug 6 14:02:20 UTC 2008
State-Changed-Why:
This is a so called "don't do this" issue.
> Anyone can change root on anonymous ftp
That is not true. You need administrator access on the FTP server.
You need privileges to make the necessary changes to that file
system.
Don't move directories from unsecure parts of the filesystem to
secure parts of the filesystem.
http://www.freebsd.org/cgi/query-pr.cgi?pr=72508
More information about the freebsd-bugs
mailing list