Re: Exploit for Linux wu.ftpd hole

Pete Shipley (shipley@dis.org)
Wed, 5 Jul 1995 19:36:29 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Paul Tony Watson: "Yggdrasil Linux (mis)configuration problem"
Previous message: Larry Kruper: "Re: Exploit for Linux wu.ftpd hole"
In reply to: John Adams: "Re: Exploit for Linux wu.ftpd hole"
Next in thread: Mike Edulla: "Re: Exploit for Linux wu.ftpd hole"

>Ahh, but isn't wu-ftp supposed to be running as uid ftp?
>
>where does the turnabout come in where ftpd runs as ROOT?

ftpd had to run as root so it can change it's uid to the ftp user.

Next message: Paul Tony Watson: "Yggdrasil Linux (mis)configuration problem"
Previous message: Larry Kruper: "Re: Exploit for Linux wu.ftpd hole"
In reply to: John Adams: "Re: Exploit for Linux wu.ftpd hole"
Next in thread: Mike Edulla: "Re: Exploit for Linux wu.ftpd hole"