Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: vsftpd fatal flaw - can C help
Top Forums Programming vsftpd fatal flaw - can C help Post 302071351 by jim mcnamara on Saturday 15th of April 2006 10:26:04 PM
Old 04-15-2006
Instead of changing vsftpd, change what you are doing slightly.

sFTP the files into /tmp or some other location, then once the file has arrived
Code:
mv /tmp/file /dest/file

vsftp is open source. That means if you have to have it changed:
1. you will have to make code changes for every new release. What if there is a security hole found?
2. you get to support any changes you make that cause problems.

I'd leave it alone and change what you're doing i.e., get another sftp or find a simple workaround.
 

7 More Discussions You Might Find Interesting

1. News, Links, Events and Announcements

Flaw leaves Linux computers vulnerable

NEWS: Flaw leaves Linux computers vulnerable http://news.com.com/2100-1001-857265.html A flaw in a software-compression library used in all versions of Linux could leave the lion's share of systems based on the open-source operating system open to attack, said sources in the security... (3 Replies)
Discussion started by: killerserv
3 Replies

2. UNIX for Dummies Questions & Answers

VSFTPD

Hi, I am using VSFTPD. I have instructed it to send all logging informartion to /var/log/messages. I would like it to record the names of users who have failed loggin attempts. I have read up on it but have not found out how to do this. Any ideas? (1 Reply)
Discussion started by: mojoman
1 Replies

3. UNIX for Advanced & Expert Users

Vsftpd serious issues

hello mighty all there's a problem in vsftpd it allows to delete files which have 000 mode and root:root owner also 400 even with option deny_file={those_files} - still allowed i'm doing it through mc through ftp-shell it's not allowed it's not working if mother-dir have -w and not working... (3 Replies)
Discussion started by: tip78
3 Replies

4. UNIX for Dummies Questions & Answers

Vsftpd is not working

Hi, I installed debian jessie and friend asked me to install for him vsftpd, of course, first I try at my vps, but I don't get it to work. there are many tutorials to install ftp server but as i said, it is not working and beside running ftp server, I need for him and some GUI to use it, he is... (2 Replies)
Discussion started by: alanford
2 Replies

5. UNIX for Dummies Questions & Answers

Vsftpd

Hello I am new to linux. I have recently installed vsftpd in my Centos server. I have set the local_umask=0037. But now i can't understand how the window users added in a centos server can see each-other folder. ---------- Post updated at 05:59 AM ---------- Previous update was at 05:55 AM... (7 Replies)
Discussion started by: Maham Zahid
7 Replies

6. UNIX for Advanced & Expert Users

Does vsftpd support user access with client certificate with priv/pub key + vsftpd certificate?

:rolleyes:I am trying to setup all certificate based client-server environment in Linux using vsftpd and curl with openssl. I would like to make a user access with vsftpd certificate and user own client certificate (self-signed) with private/public key. I don't see google posts about the my plan... (4 Replies)
Discussion started by: gogogo
4 Replies

7. What is on Your Mind?

PHP Fatal Errors During SSL Cert Management - PHP Fatal error: xc_fcntl_mutex failed

Today, I noticed some errors in our SSL cert renewal log files, mostly related to domains where the IP address had changed. Concerned about this, rebuilt out SSL cert, which normally goes well without a hiccup. However, for today, for some reason which I cannot explain, there was a PHP error... (0 Replies)
Discussion started by: Neo
0 Replies

LEARN ABOUT DEBIAN

sftp-server

SFTP-SERVER(8)						    BSD System Manager's Manual 					    SFTP-SERVER(8)

NAME

     sftp-server -- SFTP server subsystem

SYNOPSIS

     sftp-server [-ehR] [-f log_facility] [-l log_level] [-u umask]

DESCRIPTION

     sftp-server is a program that speaks the server side of SFTP protocol to stdout and expects client requests from stdin.  sftp-server is not
     intended to be called directly, but from sshd(8) using the Subsystem option.

     Command-line flags to sftp-server should be specified in the Subsystem declaration.  See sshd_config(5) for more information.

     Valid options are:

     -e      Causes sftp-server to print logging information to stderr instead of syslog for debugging.

     -f log_facility
	     Specifies the facility code that is used when logging messages from sftp-server.  The possible values are: DAEMON, USER, AUTH,
	     LOCAL0, LOCAL1, LOCAL2, LOCAL3, LOCAL4, LOCAL5, LOCAL6, LOCAL7.  The default is AUTH.

     -h      Displays sftp-server usage information.

     -l log_level
	     Specifies which messages will be logged by sftp-server.  The possible values are: QUIET, FATAL, ERROR, INFO, VERBOSE, DEBUG, DEBUG1,
	     DEBUG2, and DEBUG3.  INFO and VERBOSE log transactions that sftp-server performs on behalf of the client.	DEBUG and DEBUG1 are
	     equivalent.  DEBUG2 and DEBUG3 each specify higher levels of debugging output.  The default is ERROR.

     -R      Places this instance of sftp-server into a read-only mode.  Attempts to open files for writing, as well as other operations that
	     change the state of the filesystem, will be denied.

     -u umask
	     Sets an explicit umask(2) to be applied to newly-created files and directories, instead of the user's default mask.

     For logging to work, sftp-server must be able to access /dev/log.	Use of sftp-server in a chroot configuration therefore requires that
     syslogd(8) establish a logging socket inside the chroot directory.

SEE ALSO

     sftp(1), ssh(1), sshd_config(5), sshd(8)

     T. Ylonen and S. Lehtinen, SSH File Transfer Protocol, draft-ietf-secsh-filexfer-00.txt, January 2001, work in progress material.

HISTORY

     sftp-server first appeared in OpenBSD 2.8.

AUTHORS

     Markus Friedl <markus@openbsd.org>

BSD
								  January 9, 2010							       BSD
All times are GMT -4. The time now is 09:06 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy