has anyone experienced what appears to be an anon ftp attack

i commented out ftp entry in a config file, seemed to work for a while, they're baccckkk

its almost a pseudo dos based on ftp

Disable anon ftp and this will not happen. You may still get reports of the attempts but if disabled it tightens your box a bit! :D

Show us some log entries.

Most of what I see in ftp logs are warez scanners looking for a place to dump stuff. All automated. I even left a text file called passwd sitting in the directory and no one touched it LOL.

No one should enable anon FTP ever! unless:
1 - They know the risks, and how to take care of them.
2 - they REALLY need it.