> I would have thought it was very on-topic post. I never said it was off-topic. It is, or at least should, be repeat information, as such nothing new. And I did say I'm not complaining :-)
> > Wait a minute. Everyone running an ftp server to the public reads bugtraq, > > You assume too much. Well, not having extensive statistics I'll have to trust you on that. I did however think the readers of this list do read bugtraq if they're running servers? > Yes it was announced on Wednesday due to a boo-boo by RedHat. Ah, some uncooperative and/or idiot announced it early - I don't think any of the followups mentioned that. That does increase the urgency a bit, I agree. Linux distros now have ftp disabled by default, nobody should get caught by not knowing about running a server. They also come with personal firewalls. New users generally don't run ftp servers. Mentioning that people who do run servers should read bugtraq is not elitist. My comments were about the "widely known" - I said the problem was already widely known by the time Ryurick updated his server. Not really a big issue - I should do some work instead. ;) Volker
