d******e 发帖数: 2265 | 1 nod,俺用wu-ftpd, 鬼子们最喜欢从那里黑进去了
redhat有更好的ftpd嘛? |
|
w**e 发帖数: 7 | 2 最近学校管安全的通知我们,说我们的FTP server的CHMOD
功能没有关闭,不安全。在下没有经验,发信问他们怎么才
能关闭,结果好几天都没有回音。
自己看了一下man page,好象也没有什么特别的选项来关闭
它,而且发现FTPD里还有很多类似的功能都不太安全。哪位
有经验的大虾指点指点。谢谢! |
|
o*********l 发帖数: 17 | 3 最好升级或者安装一套新的FTP Daemon软件,比如:wu-ftpd等。 |
|
|
|
b***i 发帖数: 3043 | 6 新的信息
大神帮看看那里可以提高?
[ 0.128265] omap_i2c omap_i2c.1: bus 1 rev2.4.0 at 100 kHz
[ 0.129791] tps65910 1-002d: JTAGREVNUM 0x1
[ 0.133728] print_constraints: VRTC:
[ 0.135223] print_constraints: VIO: at 1500 mV
[ 0.137603] print_constraints: VDD1: 600 <--> 1500 mV at 1100 mV normal
[ 0.139923] print_constraints: VDD2: at 1100 mV
[ 0.140960] print_constraints: VDD3: 5000 mV
[ 0.142425] print_constraints: VDIG1: at 1800 mV
[ 0.143890] print_constraints: VDIG2: at 1800 mV
[ ... 阅读全帖 |
|
b**r 发帖数: 352 | 7 MontaVista Linux running on ARM9.
after system starts up, busybox's inetd is started, I can remotely ftp to
this system, but telnet is not working. contents of inetd.conf
ftp stream tcp nowait root /usr/sbin/ftpd ftpd
telnet stream tcp nowait root /usr/sbin/telnetd telnetd
the telnetd and ftpd are all symbolic links to busybox.
One more clue: if i kill the inetd, and manually start telnetd, it will work
.But restart inetd wont help.
Anybody got any clue? |
|
r****t 发帖数: 9 | 8 although I have not tried that, but theoretically there
should be little problem.
You will have to use a port above 1024 as the ftpd listening
port, as listening
on a port below 1024 requires root privilige. Still you'd
better set the root of
your ftpd to a sub directory of the user account home
directory, so that the ftpd
could manage its own passwd file. |
|
t*******f 发帖数: 2634 | 9 一口气刷了三个无线路由器 WITH DD-WRT。还剩一个
LINKSYS的没刷,从买来没有任何问题,已经半年了。
不过手里还有几个不兼容DD-WRT路由器的不知道能干
啥。
DD-WRT的 USB+FTPD 怎么用?我那个3500L上FTPD
可以登陆,但是不能上传和下载。请问该怎么鼓捣呢? |
|
b**r 发帖数: 352 | 10 inetd,telnetd, so as ftpd,httpd are all busybox functions.
telnetd will work itself, but looks like inetd is not spawning it.
curiously, both ftpd and httpd work properly.
connections |
|
T********r 发帖数: 6210 | 11 only when you connect to the rsh service, inetd forks a rshd
process for you. it is just like ftpd starting from inetd. did
you see any ftpd running when nobody connect to your ftp
service? |
|
J******n 发帖数: 16 | 12 那个服务器还是我忙了一中午没吃饭装的系统呢!
记得很清楚:
功夫茶
dell power-edge sever, PII X2, 256M
freeBSD 5.x
pure-ftpd
没想到丢人都丢到这里来了,郁闷 :-( |
|
|
|
c*****m 发帖数: 1160 | 15
这难道不是“pureftpd”的专门设置?我都不肯定我现在这个是哪个 ftpd. |
|
w**z 发帖数: 8232 | 16 Highly critical “Ghost” allowing code execution affects most Linux systems
New bug haunting Linux could spark "a lot of collateral damage on the
Internet."
by Dan Goodin - Jan 27 2015, 11:32am PST
Share
Tweet
110
Pixabay
An extremely critical vulnerability affecting most Linux distributions gives
attackers the ability to execute malicious code on servers used to deliver
e-mail, host webpages, and carry out other vital functions.
The vulnerability in the GNU C Library (glibc) represents a... 阅读全帖 |
|
d****n 发帖数: 1637 | 17 run ftpd using a dedicated account.
then everyone uploading through ftp service will share that user's
permissions. |
|
d****e 发帖数: 3 | 18 HPUX permits SITE CHMOD. That means an anonymous ftp user can change
access right owned by account "ftp".Particularly, the ~ftp directory.
I am not sure what an cracker can do by exploiting this. Basically, they can
modify the files in you ftp directory and inject a trojan in some files. When
sbd else gets those files, bad things may happen.
I don't know how to disable SITE CHMOD. But you can simply change the owner of
the ftp home directory from "ftp" to "root". Also, you may want to keep two |
|
n******t 发帖数: 4406 | 19 proftpd,
in principle, you should not allow every one open ftp service
or at least you need to block port 21 incoming connection from
outside. |
|
w**e 发帖数: 7 | 20 对了,我们用的是HP的UNIX系统,比较老 --- HPUX 10.20。 |
|
D****N 发帖数: 430 | 21 If it's the never-patched Redhat you're vulunerable to the so-called
Ramen worm.. Looks like the user from 212.179.162.109 has already got
access to your machine thro the security hole from LPRng or wu-ftpd
Go get the patch as soon as possible from http://www.redhat.com/support/errata/
A complete reinstall is the safest option for you now. Then patch up
the system (every one is recommended.. :( that's a lot I know) and
disallow incoming requesting using tcp wrappers for all but trusted
ips. |
|
z*******w 发帖数: 79 | 22 1. backup your data and do a clean install
2. 6.2 or 7.1, either is OK, as long as:
2.1 disable unused service: e.g. rpc, ftp, telnet
sendmail, ...
2.2 patch the daemons you will use: wu-ftpd, rpc, samba, bind, etc
are known to have security holes
2.3 set up firewall: ipchains(kernel 2.2) iptables(kernel 2.4)
2.4 use ssh/scp to replace telnet/ftp
2.5 security auditing: check system log, use tripwire, install
snort, etc. |
|
h*a 发帖数: 142 | 23 网关的人说是一个法国的ip..在我们那台机器上放了10G的东西。
我试着要删掉这个程序,可是总删不掉,怎么办?
看task manager 中的process ,这个叫war-ftpd.exe 的文件一直在run着。
重起也自动run..
怎么办。
还有,怎么防止类似的事在发生。。 |
|
l*j 发帖数: 336 | 24 war-ftpd,
right-click on the icon then choose hide icon |
|
c**o 发帖数: 166 | 25 1) man ftpd
There is a section about how to set up anonymous ftp. From
there I
suppose you can figure out how to do what you wanted.
2) use /usr/lib/rsh or man -s 1m rsh
You can even let him telnet but do whatever you allow him to
do.
|
|
t*v 发帖数: 32 | 26 ftpd is started within inetd, I assume it is run by root.
but the client should be able to list the directory ya? |
|
o***z 发帖数: 133 | 27 【 以下文字转载自 Linux 讨论区 】
【 原文由 ottoz 所发表 】
以前用redhat的时候,每天root都能收到一封mail,
里面有sshd和ftpd的用户登录记录,现在换了mandrake,
root收不到信了,不知该怎么设? |
|
w**n 发帖数: 88 | 28
Do a traceroute ...
ps -ef | grep ftpd |
|
m*****d 发帖数: 18 | 29 it's linux 7.3,i have checked xinetd.d,telnet and
wu-ftpd is not commented.so how can i do next?
3x. |
|
a***t 发帖数: 39 | 30 Well, telnet and wu-ftpd should be two files under /etc/xinetd.d directory.
cat both files, and make sure the last line in the file is:
disable = no
if it's yes, change it to no. then restart xinetd by:
/etc/init.d/xinetd restart
control
click
check
control |
|
y***i 发帖数: 279 | 31 go to MS knowledge base searching "win2k could not shut down" then
you got lots solution to gneral cases. Also check if there is any
application which does not quit correctly when windows tries to shut
down all running applications, i once got this problem, after spent
2 days to install all the sucked patches, it turned out
that a free FTPD i installed made the trouble. |
|