wu-ftp, evil, arghhhh, bad... nasty.
There are so many ways to root a machine running wu-ftp, you might as well tack your password onto /etc/issue.net
SuSe as of 7.1 I think, RedHat since 7.2, Slackware, and most of the others have moved to ProFTPd. Running an anonymous ftp server on a static IP is always asking for trouble, so regardless of choice, you may want to fiddle with your .conf file to enable only user level access. If this is just on a dynamic IP, or better yet, on a machine just on a local network... security obviously isn't much of an issue. Trust me, post anything on the Security forum with the title: "Is wu-ftp bad?" and you'll get a stack of yes replies.
Okay, I calmed down a bit. A while ago I had to help a friend re-build a system that had been trashed by some s'kiddie who had rooted wu.
Sorry for the rant there...
Cheers,
Finegan
|