Red Hat Bugzilla – Bug 67762
Security problem: ftpaccess file overwriten when using up2date
Last modified: 2007-04-18 12:43:48 EDT
From Bugzilla Helper:
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR
Description of problem:
The /etc/ftpaccess access file is overwriten when updating system using the
up2date process. Any config for virtual ftp servers are removed giving
external users access to other parts of your file system.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1.use up2date alow wu-ftp upgrade
2.check /etc/ftpaccess or access using ftp client
Actual Results: External ftp users had access to areas of my server not
Expected Results: /etc/ftpaccess should remain untouched.
*** This bug has been marked as a duplicate of 57763 ***
Changed to 'CLOSED' state since 'RESOLVED' has been deprecated.