OpenPKG CVS Repository http://cvs.openpkg.org/ ____________________________________________________________________________
Server: cvs.openpkg.org Name: Ralf S. Engelschall Root: /e/openpkg/cvs Email: [EMAIL PROTECTED] Module: openpkg-web Date: 30-Apr-2004 13:47:29 Branch: HEAD Handle: 2004043012472900 Modified files: openpkg-web/security OpenPKG-SA-2004.018-proftpd.txt Log: cleanups Summary: Revision Changes Path 1.2 +3 -3 openpkg-web/security/OpenPKG-SA-2004.018-proftpd.txt ____________________________________________________________________________ patch -p0 <<'@@ .' Index: openpkg-web/security/OpenPKG-SA-2004.018-proftpd.txt ============================================================================ $ cvs diff -u -r1.1 -r1.2 OpenPKG-SA-2004.018-proftpd.txt --- openpkg-web/security/OpenPKG-SA-2004.018-proftpd.txt 30 Apr 2004 11:39:13 -0000 1.1 +++ openpkg-web/security/OpenPKG-SA-2004.018-proftpd.txt 30 Apr 2004 11:47:29 -0000 1.2 @@ -20,10 +20,10 @@ Description: A portability workaround was applied in version 1.2.9 of the FTP server ProFTPD [1]. As a side-effect, CIDR based (aaa.bbb.ccc.ddd/NN) - ACL entries in "Allow" and "Deny" directives act like a "AllowAll" + ACL entries in "Allow" and "Deny" directives act like an "AllowAll" directive and so FTP clients are granted access to files and - directories although the server configuration explicitly deny this - access [2]. + directories although the server configuration might explicitly deny + this [2]. Please check whether you are affected by running "<prefix>/bin/rpm -q proftpd". If you have the "proftpd" package installed and its version @@ . ______________________________________________________________________ The OpenPKG Project www.openpkg.org CVS Repository Commit List [EMAIL PROTECTED]