Re: Secure Servers (SMTP, POP3, FTP)
From: Kris Kennaway (kris@obsecurity.org)
Date: 02/11/01
- Next message: William Wong: "Default sshd_config settings"
- Previous message: siberian.org: "Re: Secure Servers (SMTP, POP3, FTP)"
- In reply to: siberian.org: "Re: Secure Servers (SMTP, POP3, FTP)"
- Next in thread: Dag-Erling Smorgrav: "Re: Secure Servers (SMTP, POP3, FTP)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 11 Feb 2001 10:50:37 -0800 From: Kris Kennaway <kris@obsecurity.org> To: "siberian.org" <siberian@siberian.org>
On Sun, Feb 11, 2001 at 10:19:42AM -0800, siberian.org wrote:
> I use ncftpd. No one talks much about it, are there inherent problems with
> it? I've found it to be reliable, configurable and flexible so I hope I'm
> not missing something...
It's impossible to say because it's closed source. It hasn't received
much attention from the white-hat community because it's almost
impossible to audit for this reason, but someone with serious time or
inclination to break lots of ncftpd servers might well be able to turn
up security problems using a debugger or disassembler.
Kris
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- application/pgp-signature attachment: stored
- Next message: William Wong: "Default sshd_config settings"
- Previous message: siberian.org: "Re: Secure Servers (SMTP, POP3, FTP)"
- In reply to: siberian.org: "Re: Secure Servers (SMTP, POP3, FTP)"
- Next in thread: Dag-Erling Smorgrav: "Re: Secure Servers (SMTP, POP3, FTP)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
