On Fri, 8 Oct 2010 12:10:55 +0200 Tobias Ulmer <tobi...@tmux.org> wrote:
> On Fri, Oct 08, 2010 at 01:15:37AM -0400, Jeremy Chase wrote: > > I found this article that claims 4.7's ftpd and sftp are vulnerable to DoS: > > > > http://www.h-online.com/open/news/item/Flaw-in-libc-implementation-threatens-FTP-servers-1103319.html > > > > Which links to: > > > > http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2010-008.txt.asc > > > > > > I haven't seen any talk of it, is this an issue for us? > > Yes > Looks like they need login rights for this dos type though