oftpd is an anonymous free FTP server that provides read-only access to files. It is run from the chroot environment, which prevents visitors to the FTP site from rising above the directory specified by the owner of the file system tree.
oftpd | |
---|---|
Type of | FTP server |
Developer | Shane kerr |
operating system | POSIX- compatible |
Latest version | 0.3.7 ( March 3, 2004 ) |
License | GNU General Public License |
Site | oftpd page . Date of treatment September 30, 2006. Archived on February 5, 2012. |
For a long time, oftpd was positioned as the most secure among daemons of this class, but on July 8, 2005, version 0.3.7 (the latest available at the moment) revealed a critical vulnerability that allowed it to be executed on the machine on which it was broken by a buffer was run, arbitrary code. At the moment, support for the program has been discontinued.
Sources
- ↑ Remote denial of service in oftpd . - Description of the vulnerability on SecurityLab . Date of treatment September 30, 2006. Archived on February 5, 2012.