Re: [ILUG] ftp hack?

From: Paul Kelly (longword at domain esatclear.ie)
Date: Tue 05 Oct 1999 - 21:32:31 IST

• Next message: Mark Page: "[ILUG] Pine"
• Previous message: Ger Gorman: "[ILUG] ftp hack?"
• In reply to: Ger Gorman: "[ILUG] ftp hack?"
• Next in thread: Firestarter: "Re: [ILUG] ftp hack?"
• Reply: Firestarter: "Re: [ILUG] ftp hack?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

Ger Gorman wrote:
> ok...this isn't directly a linux issue but more an ftp question. (but since
> i see so much talk on billware I hope I'm forgiven). Has anyone ever seen
> anything like this:

There's a known bug in older versions of wu-ftpd. It's your
common-or-garden buffer overflow problem triggered by exceeding the
maximum directory length that wu-ftpd assumes but never checks. This is
a serious problem if you aren't running the patched wuftpd package and
can lead to someone acquiring root access to your machine.

Looks to me like you were attacked.

Paul.

• Next message: Mark Page: "[ILUG] Pine"
• Previous message: Ger Gorman: "[ILUG] ftp hack?"
• In reply to: Ger Gorman: "[ILUG] ftp hack?"
• Next in thread: Firestarter: "Re: [ILUG] ftp hack?"
• Reply: Firestarter: "Re: [ILUG] ftp hack?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:04:40 GMT