[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] proftpd: AllowChmod is deprecated

Subject: Re: [cobalt-security] proftpd: AllowChmod is deprecated
From: David Lucas <david@xxxxxxxxxxxxxxxx>
Date: Thu, 20 Jun 2002 18:41:09 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

At 04:39 PM 6/20/2002, you wrote:

Dear Cobalt gurus,

Today I installed RAQ2-All-Security-4.0.1-13323
though I am confused by the fact that the patch
number is lower than the earlier patch (from three
months ago) named RAQ2-All-Security 4.0.1-13453
which I installed at that time. Is there significance to
the patch numbering sequence? If so, should I
uninstall this new patch, or reinstall the earlier one?

Also, since I installed this patch, I have been seeing
messages in my log such as:

Jun 20 12:15:04 www proftpd[20171]: AllowChmod is deprecated, and will notwork consistantly, use <Limit SITE_CHMOD> instead.



user list had a fix two days ago, here it is

Seems that they don't install a new proftpd.conf file I edited/ect/proftpd.conf

I edited that file

# Restore file permissions capability to site administrator
<Global>
#AllowChmod on


In other words, edit the /etc/proftpd.conf file
put a "#" in front of the AllowChmod on
The setting are different for this version.

more research,
Unless you are going to deny chmod, you need no entry at all

References:
- [cobalt-security] proftpd: AllowChmod is deprecated
  - From: Dan Keller

Prev by Date: Re: [cobalt-security] proftpd: AllowChmod is deprecated
Next by Date: [cobalt-security] Weird process running
Previous by thread: Re: [cobalt-security] proftpd: AllowChmod is deprecated
Next by thread: [cobalt-security] Weird process running

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index