From: rich@annexia.org To: "The Net::FTPServer mailing list" <ftpserver@annexia.org> Subject: Net::FTPServer version 1.034: security fix Date: Fri, 1 Feb 2002 08:54:37 +0000 Cc: lwn@lwn.net This is a security fix release to the stable branch. The NLST command was not honouring the "list rule" access control rule, potentially allowing users to list directories to which they should not have access. If your configuration file uses "list rule", then you need to upgrade to version 1.034. f0f04f7880742a03512a0271f1c0652a Net-FTPServer-1.034.tar.gz It will appear on CPAN here shortly: http://www.cpan.org/modules/by-authors/id/R/RW/RWMJ/ Rich. -- rich@annexia.org | Is your school part of http://www.schoolmaster.net ? BiblioTech Ltd, Unit 2 Piper Centre, 50 Carnwath Road, London, SW6 3EG. +44 20 7384 6917 | Free software: http://freshmeat.net/users/rwmj Copyright © 2002 Richard Jones | GnuPG/PGP key from www.annexia.org