Date: Mon, 29 Jan 2001 01:54:38 +0000 (GMT) From: Chris Evans <chris@scary.beasts.org> To: <security-audit@ferret.lmh.ox.ac.uk> Subject: CTF: new secure ftpd Hi, My secure "vsftpd" is now in releaseable form for a BETA test. Overview - Ground up build of an FTP server, with security in mind. - GPL license. - Does not suffer horrid "running everything with root privs" issue which afflicts wu-ftpd and bsd-ftpd (i.e. it has a security design). - Supports local accounts as well as anonymous. What needs testing - AUDITING. I believe the program to be secure, but I'd like verification of this by some third party auditing. With a little effort, we can be sure we have a highly secure FTP server under a favourable license. - Client testing. Point your favourite FTP client at the FTP site below and see what you can break ;-) - Server testing. I need people to build and run this program on FTP sites, and report portability issues, runtime issues, feature requests, etc. Where to get it. ftp://ferret.lmh.ox.ac.uk/pub/linux/vsftpd-0.0.9.tar.gz Cheers Chris