vsftpd
| vsftpd | |
|---|---|
| Developer | Chris Evans |
| Stable release | 3.0.5
/ August 2, 2021 |
| Repository |
|
| Engine | |
| Operating system | Unix-like systems |
| Type | FTP daemon |
| License | GPL |
| Website | security |
vsftpd (or very secure FTP daemon)[1] is an FTP server for Unix-like systems, including Linux. It is the default FTP server in the Ubuntu, CentOS, Fedora, NimbleX, Slackware and RHEL Linux distributions. It is licensed under the GNU General Public License. It supports IPv6, TLS and FTPS (explicit since 2.0.0 and implicit since 2.1.0).
Compromised website
[edit | edit source]In July 2011, it was discovered that vsftpd version 2.3.4 downloadable from the master site had been compromised.[2][3] Users logging into a compromised vsftpd-2.3.4 server may issue a ":)" smileyface as the username and gain a command shell on port 6200.[3] This was not an issue of a security hole in the original version of vsftpd; instead, an unknown attacker had uploaded a different version of vsftpd which contained a backdoor. Since then, the site was moved to Google App Engine.
See also
[edit | edit source]Lua error in mw.title.lua at line 392: bad argument #2 to 'title.new' (unrecognized namespace name 'Portal').
References
[edit | edit source]- ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
- ^ vsftpd Compromised Source Packages Backdoor Vulnerability Archived 2021-01-27 at the Wayback Machine at SecurityFocus
- ^ a b Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
External links
[edit | edit source]- Guide to setting up vsftpd including TLS/SSL encryption
.svg){kind=link}