Re: wu-ftpd (2000-06-23 security-fixed frozen version) constantly crashes
On Wed, 28 Jun 2000 14:56:39 -0500, Lee Revell wrote: >> my wu-ftpd is constantly crashing. :-( [...] >Use ProFTPD. It has a MUCH better security record, is fast, That's true, but it *also* has its security leaks. >lightweight, and configuration is a breeze if you have ever configured >Apache. I made the switch several months ago and would never go back. I'm already running a server with ProFTPD, so I know it already. ProFTPD surely has its advantages over WU-FTPD, but I don't consider them that important that I absolutely *have* to switch. Anyway, I don't want to start a discussion on which is the best FTP server. It's just not my thing to evade problems as soon as I face them. Instead I'd like to cure them. So, is there anyone who can help me stopping these crashes? Thanks, Ralf -- Sign the EU petition against SPAM: L I N U X .~. http://www.politik-digital.de/spam/The Choice /V\ of a GNU /( )\ Generation ^^-^^
Re: wu-ftpd (2000-06-23 security-fixed frozen version) constantly crashes
On Wed, Jun 28, 2000 at 02:56:39PM -0500, Lee Revell wrote: > Use ProFTPD. It has a MUCH better security record, is fast, i don't know if i would go that far... it is much younger then wu-root^H^H^H^Hftpd but it has quite an abysmal record from when it started. it however has been ok lately (as in i don't recall seeing a BugTraq post about it in a few monthes). Dan Jacobowitz scored Debian a PowerMac box by way of a Proftpd root hole ;-) i prefer OpenBSD's given its older and well audited. -- Ethan Benson http://www.alaska.net/~erbenson/ pgpYtDGcXwgHl.pgp Description: PGP signature
Re: wu-ftpd (2000-06-23 security-fixed frozen version) constantly crashes
Use ProFTPD. It has a MUCH better security record, is fast, lightweight, and configuration is a breeze if you have ever configured Apache. I made the switch several months ago and would never go back. "Ralf G. R. Bergs" wrote: > > Hi there, > > my wu-ftpd is constantly crashing. :-( > > About half a dozen times per hour (sometimes even more often) I see lines in > syslog like the following, which indicate crashed instances: > > wu-ftpd[28359]: exiting on signal 11: Segmentation fault > > Before I upgraded from stable to frozen my FTP daemon (wu-ftpd-academ then) > was rock solid (I have FTP guests on my box 24 hours per day, from 10 users > max to 25 max.) Now I have the above errors. > > When I learnt about the recently published buffer-overflow bug in wu-ftpd, I > thought this was the reason, so I immediately installed the fixed version > (2.6.0-5.1.) But to no avail, the crashes still occur. :-((( > > I'm running wu-ftpd from xinetd as follows: > > service ftp > { > socket_type = stream > protocol= tcp > wait= no > user= root > server = /usr/sbin/wu-ftpd > instances = 30 > log_type= SYSLOG local6 > log_on_failure += HOST > } > > Any idea what's causing this? My system is completely "frozen" (i.e. Debian- > version-like :-) > > Thanks, > > Ralf >
wu-ftpd (2000-06-23 security-fixed frozen version) constantly crashes
Hi there, my wu-ftpd is constantly crashing. :-( About half a dozen times per hour (sometimes even more often) I see lines in syslog like the following, which indicate crashed instances: wu-ftpd[28359]: exiting on signal 11: Segmentation fault Before I upgraded from stable to frozen my FTP daemon (wu-ftpd-academ then) was rock solid (I have FTP guests on my box 24 hours per day, from 10 users max to 25 max.) Now I have the above errors. When I learnt about the recently published buffer-overflow bug in wu-ftpd, I thought this was the reason, so I immediately installed the fixed version (2.6.0-5.1.) But to no avail, the crashes still occur. :-((( I'm running wu-ftpd from xinetd as follows: service ftp { socket_type = stream protocol= tcp wait= no user= root server = /usr/sbin/wu-ftpd instances = 30 log_type= SYSLOG local6 log_on_failure += HOST } Any idea what's causing this? My system is completely "frozen" (i.e. Debian- version-like :-) Thanks, Ralf -- Sign the EU petition against SPAM: L I N U X .~. http://www.politik-digital.de/spam/The Choice /V\ of a GNU /( )\ Generation ^^-^^