Hello, I'm not a Debian contributer, but a Mandriva one. Here is the patch I made for the Mandriva cooker package. Maybe it could be useful, or at least serve as a base for discussion:
--- vsftpd-2.0.5/postlogin.c.orig 2007-05-02 19:43:54.000000000 +0200 +++ vsftpd-2.0.5/postlogin.c 2007-05-02 19:44:28.000000000 +0200 @@ -1009,7 +1009,7 @@ /* Are we required to chown() this file for security? */ if (p_sess->is_anonymous && tunable_chown_uploads) { - vsf_sysutil_fchmod(new_file_fd, 0600); + vsf_sysutil_fchmod(new_file_fd, (0777 & ~tunable_anon_umask)); if (tunable_one_process_model) { vsf_one_process_chown_upload(p_sess, new_file_fd); HTH, Bruno. -- Linux Profession Lead EMEA / Open Source Evangelist \ HP C&I EMEA IET http://www.mondorescue.org / HP/Intel Solution Center \ http://hpintelco.net Des infos sur Linux? http://www.HyPer-Linux.org http://www.hp.com/linux La musique ancienne? http://www.musique-ancienne.org http://www.medieval.org -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]