Can some of the more security minded people out there fill me in on any types of cracks which can be performed through ftp, specifically Anonymous FTP. I have some strange log entries I'm trying to figure out....

Thanks In Advance!

Post that portion of the log in question and we can probably pin point it. Edit as needed for privacy issues (your ip's).
Anon-FTP is dangerous as you really have no way of knowing who it is on your server.

Thanks for your reply....

DigitalXWeb, may I send you an email about this instead of posting?

Thanks

jv

It depends on whether you're running proftpd or wu-ftpd.

But generally, you will want to update either one.

Versions prior to ProFTPD 1.2.0rc3 were vulnerable to allow any user to execute arbitrary code on the server, including the anonymous ftp user.

The wu-ftpd exploit is newer and anything prior to 2.6.2 (2.6.1 with patches) will allow any user to execute arbitrary code ont he server, including the anonymous ftp user.

The big problem is that even RedHat 7.2 comes with a vulnerable version of wu-ftpd.

Originally posted by AudiBoy
Thanks for your reply....

DigitalXWeb, may I send you an email about this instead of posting?

Thanks

jv

Sure!! I PM'd you with my email addy..