Re: wu-ftpd (2000-06-23 security-fixed frozen version) constantly crashes
On Wed, 28 Jun 2000 14:56:39 -0500, Lee Revell wrote: >> my wu-ftpd is constantly crashing. :-( [...] >Use ProFTPD. It has a MUCH better security record, is fast, That's true, but it *also* has its security leaks. >lightweight, and configuration is a breeze if you have ever configured >Apache. I made the switch several months ago and would never go back. I'm already running a server with ProFTPD, so I know it already. ProFTPD surely has its advantages over WU-FTPD, but I don't consider them that important that I absolutely *have* to switch. Anyway, I don't want to start a discussion on which is the best FTP server. It's just not my thing to evade problems as soon as I face them. Instead I'd like to cure them. So, is there anyone who can help me stopping these crashes? Thanks, Ralf -- Sign the EU petition against SPAM: L I N U X .~. http://www.politik-digital.de/spam/The Choice /V\ of a GNU /( )\ Generation ^^-^^
Re: wu-ftpd (2000-06-23 security-fixed frozen version) constantly crashes
On Wed, Jun 28, 2000 at 02:56:39PM -0500, Lee Revell wrote: > Use ProFTPD. It has a MUCH better security record, is fast, i don't know if i would go that far... it is much younger then wu-root^H^H^H^Hftpd but it has quite an abysmal record from when it started. it however has been ok lately (as in i don't recall seeing a BugTraq post about it in a few monthes). Dan Jacobowitz scored Debian a PowerMac box by way of a Proftpd root hole ;-) i prefer OpenBSD's given its older and well audited. -- Ethan Benson http://www.alaska.net/~erbenson/ pgpYtDGcXwgHl.pgp Description: PGP signature
Re: wu-ftpd (2000-06-23 security-fixed frozen version) constantly crashes
Use ProFTPD. It has a MUCH better security record, is fast,
lightweight, and configuration is a breeze if you have ever configured
Apache. I made the switch several months ago and would never go back.
"Ralf G. R. Bergs" wrote:
>
> Hi there,
>
> my wu-ftpd is constantly crashing. :-(
>
> About half a dozen times per hour (sometimes even more often) I see lines in
> syslog like the following, which indicate crashed instances:
>
> wu-ftpd[28359]: exiting on signal 11: Segmentation fault
>
> Before I upgraded from stable to frozen my FTP daemon (wu-ftpd-academ then)
> was rock solid (I have FTP guests on my box 24 hours per day, from 10 users
> max to 25 max.) Now I have the above errors.
>
> When I learnt about the recently published buffer-overflow bug in wu-ftpd, I
> thought this was the reason, so I immediately installed the fixed version
> (2.6.0-5.1.) But to no avail, the crashes still occur. :-(((
>
> I'm running wu-ftpd from xinetd as follows:
>
> service ftp
> {
> socket_type = stream
> protocol= tcp
> wait= no
> user= root
> server = /usr/sbin/wu-ftpd
> instances = 30
> log_type= SYSLOG local6
> log_on_failure += HOST
> }
>
> Any idea what's causing this? My system is completely "frozen" (i.e. Debian-
> version-like :-)
>
> Thanks,
>
> Ralf
>
wu-ftpd (2000-06-23 security-fixed frozen version) constantly crashes
Hi there,
my wu-ftpd is constantly crashing. :-(
About half a dozen times per hour (sometimes even more often) I see lines in
syslog like the following, which indicate crashed instances:
wu-ftpd[28359]: exiting on signal 11: Segmentation fault
Before I upgraded from stable to frozen my FTP daemon (wu-ftpd-academ then)
was rock solid (I have FTP guests on my box 24 hours per day, from 10 users
max to 25 max.) Now I have the above errors.
When I learnt about the recently published buffer-overflow bug in wu-ftpd, I
thought this was the reason, so I immediately installed the fixed version
(2.6.0-5.1.) But to no avail, the crashes still occur. :-(((
I'm running wu-ftpd from xinetd as follows:
service ftp
{
socket_type = stream
protocol= tcp
wait= no
user= root
server = /usr/sbin/wu-ftpd
instances = 30
log_type= SYSLOG local6
log_on_failure += HOST
}
Any idea what's causing this? My system is completely "frozen" (i.e. Debian-
version-like :-)
Thanks,
Ralf
--
Sign the EU petition against SPAM: L I N U X .~.
http://www.politik-digital.de/spam/The Choice /V\
of a GNU /( )\
Generation ^^-^^
