Michel Parlebas a écrit, jeudi 15 janvier 2004, à 06:36 : [...] > PureFTPd : que peut-on lui reprocher ?
Rien(*), si l'on en croit debian-security (depuis janvier 2000) New Debian wu-ftpd packages released [DSA-016-1] New version of wu-ftpd released [DSA-016-2] Correction: New version of wu-ftpd released [DSA-016-3] Correction: New version of wu-ftpd released [DSA-029-1] New version of proftpd released [DSA 029-2] New proftpd packages for m68k available [DSA-032-1] proftp runs as root, /var symlink removal [DSA-032-2] proftp runs as root, /var symlink removal [DSA-055-1] gftp remote exploit [DSA-077-1] squid FTP PUT problem [DSA 084-1] New gftp packages won't display the password [DSA-087-1] wu-ftpd buffer overflow in glob code [DSA 281-1] New xftp packages fix arbitrary code execution [DSA-314-1] New atftp packages fix buffer overflow [DSA-338-1] New proftpd packages fix SQL injection [DSA-357-1] New wu-ftpd packages fix buffer overflow [DSA-377-1] New wu-ftpd packages fix insecure program execution [DSA 406-1] New lftp packages fix arbitrary code execution (*) à part être du FTP :) -- Jacques L'helgoualc'h