Ars Technica

Making ProFTPD use specified high ports for firewall

In another thread, I was discussing setting up a firewall using ancient IPChains on a Raq4 server I sort-of inhereted. Everything works great, except for FTP access. When people connect in passive ...
Bleeping Computer

ProFTPD Vulnerability Lets Users Copy Files Without Permission

Under certain conditions, ProFTPD servers are vulnerable to remote code execution and information disclosure attacks after successful exploitation of an arbitrary file copy vulnerability in the ...
ZDNet

Open-source ProFTPD hacked, backdoor planted in source code

The open-source ProFTPD project has been hacked by unknown attackers who planted a backdoor in the source code. As a result of the hack, the project's main FTP server, as well as all of the mirror ...
Dark Reading

Open-Source Project Server Hacked, Software Rigged With Backdoor Trojan

The main FTP server that serves up the open-source ProFTPD FTP software was hacked and booby-trapped with a backdoor Trojan -- meaning anyone who downloaded the code during the past few days from the ...
Ars Technica

proftpd passive ftp issues

Hello,<BR><BR>I am running a proftpd server on my debian box at home. I use dyndns.org and it is probably important to note that I have a masquerade command in my proftpd.conf file ("masquerade ...
heise online

ProFTPD: Attackers can extend rights

A security vulnerability in the popular FTP server ProFTPD can be abused by attackers to extend their rights in vulnerable systems. The developers have provided a ...