Oh let me tell you!  I was totally against configuring it/using it - I was 
overridden by some mucky mucks.... if the wuftp wasn't bad enough - you 
should have seen the username/password combos the thing was serving...  
testuser1/testuser1
testuser2/tsetuser2
poweruser/passwd1

Holy smokes !  I got in, figured out the loopback mounting they wanted, got 
some CYA indicating I was against it's use (wu-ftp), and turned over all 
the info.  I didn't want to lose my job (I was just starting out at this 
company) - what do you do???



On Thu, 14 Aug 2003 11:38:05 -0500 (CDT), Jima <jima at beer.tclug.org> wrote:

> On Thu, 14 Aug 2003, Chad Walstrom wrote:
>> Slightly off-topic, but I would recommend not using WuFTPd for new
>> installations.  I would also recommend migrating away from it for
>> existing ones.  The software has been a veritable nightmare of bugs and
>> exploits.
>
> I strongly second this recommendation.  Every year or two it seems that 
> there's a huge vulnerability that affects the vast majority of wu-ftpd 
> releases.  I've gotten burned there. :|
>
> Jima
>
>
> _______________________________________________
> TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
> http://www.mn-linux.org tclug-list at mn-linux.org
> https://mailman.real-time.com/mailman/listinfo/tclug-list
>




_______________________________________________
TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
http://www.mn-linux.org tclug-list at mn-linux.org
https://mailman.real-time.com/mailman/listinfo/tclug-list