Package: proftpd-basic Version: 1.3.4~rc2-3 Severity: wishlist Tags: patch -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
Hi Team, I'm attaching a patch containing a replacement for URL http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02 which seems not to be working anymore. Please, fee free to fix it under your own creiteria. Regards, - -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (101, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.38.2 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages proftpd-basic depends on: ii adduser 3.112+nmu2 add and remove users and groups ii debconf 1.5.39 Debian configuration management sy ii debianutils 4.0.2 Miscellaneous utilities specific t ii libacl1 2.2.49-5 Access control list shared library ii libattr1 1:2.4.44-3 Extended attribute shared library ii libc6 2.13-7 Embedded GNU C Library: Shared lib ii libcap2 1:2.21-1 support for getting/setting POSIX. ii libncurses5 5.9-1 shared libraries for terminal hand ii libpam-runtime 1.1.3-1 Runtime support for the PAM librar ii libpam0g 1.1.3-1 Pluggable Authentication Modules l ii libssl1.0.0 1.0.0d-3 SSL shared libraries ii libwrap0 7.6.q-19 Wietse Venema's TCP wrappers libra ii netbase 4.45 Basic TCP/IP networking system ii sed 4.2.1-9 The GNU sed stream editor ii ucf 3.0025+nmu2 Update Configuration File: preserv ii update-inetd 4.38+nmu1 inetd configuration file updater ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime proftpd-basic recommends no packages. Versions of packages proftpd-basic suggests: ii openbsd-inetd [inet-superse 0.20080125-6 The OpenBSD Internet Superserver ii openssl 1.0.0d-3 Secure Socket Layer (SSL) binary a pn proftpd-doc <none> (no description available) pn proftpd-mod-ldap <none> (no description available) ii proftpd-mod-mysql 1.3.4~rc2-3 Versatile, virtual-hosting FTP dae pn proftpd-mod-odbc <none> (no description available) pn proftpd-mod-pgsql <none> (no description available) pn proftpd-mod-sqlite <none> (no description available) - -- debconf information: * shared/proftpd/inetd_or_standalone: standalone -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAEBCAAGBQJN9n88AAoJEKgvu4Pz1XAzzFQP/j2bmtIznRtDcFAkGAphpwzi OiT+rGcgEZVjAiMlW6TuvLPhj+5H7FDDqbdlAVgTzuDOzubeblEaTccEMKXAoeiL Cfe+R6Exg7KScqrJPl9xxY/K0oujuCiNbhZ29ZLYJfPVzJgk0ZwiWma08bGk6Q3a LN74O4v7FJD/3636wwBhhD2rypIXeu9KqESYc7J7PouBqVCkGf4XeASe8H1twiSI q0jZaN9jLhHj0K3XeadZPEMGIFulw6hdUaPXLQrUZjRe+jwB7KuOlACNwq9rjYwM NtUByh9X4AE/0kCJdMpOtOxy7HaqPTX37J2laWyDSdl7w4t2oM2ETpQgC53wNoUh OOD6qozywEcfq8gOxbmycyLSG2aDiXolm6mxZxhb73mPRiszHGIk/yb1V9VcvWZo 9HQW+t3+gZFkvzDM6X6CPfsLWz8he6wJqJkyi0PvLg27tDAlGvHukZ/SEdTLW3MO Z4M57URwGaJ51FZM2hRdqTU7+Ug2za39stiFEmkUZ7RfeoEf+iBtemj3vr9NhD+K +esCvY3+OxkIOSFIP6jND6bL5pjHe9FQthdL/FYdDSYrGKC/oH0+ToIW/Vp7JTC/ E0IX11Lw+I0hneYsdA1Fk++3ZIb0H41L8ljtNHVQOKrDD2ycDRBkl2m0qfHFFZ08 vDs6oWQImhJtW3EuHMBN =ODj6 -----END PGP SIGNATURE-----
diff --git a/debian/templates/proftpd.conf b/debian/templates/proftpd.conf index d4497e1..6ea3ef5 100644 --- a/debian/templates/proftpd.conf +++ b/debian/templates/proftpd.conf @@ -108,7 +108,7 @@ Ratios off # Delay engine reduces impact of the so-called Timing Attack described in -# http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02 +# http://www.securityfocus.com/bid/11430/discuss # It is on by default. <IfModule mod_delay.c> DelayEngine on
