Bug#715569: Over TWO years since initial report

SanFran Guy sanfranguy at gmail.com
Wed Sep 16 03:56:08 UTC 2015


With such a simple fix, it seems like a reasonable task to knock out a
couple of grave bugs.

If no one can manage to do that, this pkg should be REMOVED from all
versions.
Upgrading to wheezy or jessie proftpd base leaves this module intact and
active.
I can confirm a huge security risk: after upgrade,  *all* FTP users have
access to rootdir.

Please recompile the latest source.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-proftpd-maintainers/attachments/20150915/a4072de6/attachment.html>


More information about the Pkg-proftpd-maintainers mailing list