vsftpd
| Developer(s) | Chris Evans |
|---|---|
| Stable release | 2.3.4 / December 2011 |
| Operating system | Unix-like systems |
| Type | FTP daemon |
| License | GPL |
| Website | vsftpd.beasts.org |
vsftpd, which stands for "Very Secure FTP Daemon"[citation needed], is an FTP server for Unix-like systems, including Linux. It is licensed under the GNU General Public License. It supports IPv6 and SSL.
vsftpd supports explicit (since 2.0.0) and implicit (since 2.1.0) FTPS.
vsftpd is the default FTP server in the Ubuntu, CentOS, Fedora, NimbleX and RHEL Linux distributions.
In July 2011 it was discovered that vsftpd version 2.3.4 downloadable from the master site had been compromised.[1][2] Users logging into an compromised vsftpd-2.3.4 server may issue a ":)" smileyface as the username and gain a command shell on port 6200.[2] This was not an issue of a security hole in vsftpd, instead, someone[clarification needed] had uploaded a different version of vsftpd which contained a backdoor.
[edit] See also
[edit] External links
- Official website
- List of Config Directives
- vsftpd at Freecode
- vsftpd Forum a vsftpd support Forum
- Guide to setting up vsftpd including TLS/SSL encryption
- Tutorial to setting up vsftpd with virtual users (VSFTPD+PAM+MySQL)
- Information about vsftpd at markhobley.yi.org
- ^ vsftpd Compromised Source Packages Backdoor Vulnerability at SecurityFocus
- ^ a b Evans, Chris (July 3, 2011). "Alert: vsftpd download backdoored". http://scarybeastsecurity.blogspot.com/2011/07/alert-vsftpd-download-backdoored.html. Retrieved July 7, 2011.
 |
This network-related software article is a stub. You can help Wikipedia by expanding it. |
