Bug 100627 - vsftpd.conf configured for anonymous access by default
vsftpd.conf configured for anonymous access by default
Product: Red Hat Linux
Classification: Retired
Component: vsftpd (Show other bugs)
All Linux
medium Severity medium
: ---
: ---
Assigned To: Bill Nottingham
Mike McLean
: Security
Depends On:
  Show dependency treegraph
Reported: 2003-07-23 15:19 EDT by Brad Spry
Modified: 2014-03-16 22:37 EDT (History)
1 user (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2003-07-23 15:21:20 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Brad Spry 2003-07-23 15:19:20 EDT
Description of problem:
vsftp allows anonymous access by default

How reproducible:

Steps to Reproduce:
1. vsftpd.conf
2. anonymous_enable=YES
Additional info:

distro should ship with anonymous_enable=NO
Comment 1 Bill Nottingham 2003-07-23 15:21:20 EDT
We've always shipped our ftp daemons to allow anonymous by default.
Comment 2 Brad Spry 2003-07-23 16:51:42 EDT
I thought the 'vs' in vsftpd stood for 'very secure'?  If so, please reconsider
disabling anonymous ftp by default.  To me the moniker 'very secure' is how the
product is labeled, its not just another ftpd.

Note You need to log in before you can comment on or make changes to this bug.