Hello, Le 31/03/2016 06:04, Jörg Frings-Fürst a écrit : > severity 819546 normal > thanks > > Hello Louis, > > thank you for spending your time helping to make Debian better with > this bug report. > > I think that no configuration of vsftpd should be activated without > verification. > > FTP is also not a service that is absolutely necessary immediately > after a new installation for the system functionality. > > And there are many examples configurations in the documentation. > > I do not close this bug because when installing no notice will be > posted. > > CU > Jörg > > >
I must disagree. First of all, it is an accepted policy that daemons on Debian
do start upon installation of the package. This was the case with vsftpd up
until vsftpd_3.0.2 and only got change with Bug: #803999.
This bug introduces a regression, including on debian/stable which also sets
listen_ipv6=YES.
As a side note, this is not uncommon to set configuration options that diverge
from the default as we can see in man ssh_config :
" Note that the Debian openssh-client package sets several options as
standard in /etc/ssh/ssh_config which are not the
default in ssh(1):
· SendEnv LANG LC_*
· HashKnownHosts yes
· GSSAPIAuthentication yes"
I do believe that listen_ipv6 should be brought back to YES to avoid the
regression and that the manpage should be updated to indicate such a
modification.
vsftpd's anonymous access is disabled by default so the systematic enablement of
vsftpd is what should be expected.
Kind regards,
...Louis
--
Louis Bouchard
Software engineer,
Ubuntu Developer Debian Mainainer
GPG : 429D 7A3B DD05 B6F8 AF63 B9C4 8B3D 867C 823E 7A61
signature.asc
Description: OpenPGP digital signature
