On Tue, 30 Jul 2002, James Bourke wrote:
> I had the port open for a few hours when someone hacked into the > system using a wu-ftp vulnerability. They installed their own > rootkit, overwriting the contents of about 60 files in the /bin > directory. They created several "group 0" accounts and installed a > few processes of their own. If you're going to use an FTP daemon, I'd recommend something like ftpd-BSD which is a linux port for the openbsd FTP daemon. Is stable, works well, and openbsd is generally very secure. You can also turn off options for it to tell people what actually ftpd it is, so this improves security some what. of course, no ftpd is the most secure ;-) john -- _______________________________________________________________ This E-Mail Message has been Virus Scanned by Zen Internet Ltd. Visit Zen Internet Ltd. at http://home.zen.co.uk/ _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
