From karp@rust098-017.resnet.wisc.edu  Fri Nov  2 22:56:52 2001
Return-Path: <karp@rust098-017.resnet.wisc.edu>
Received: from rust098-017.resnet.wisc.edu (rust098-017.resnet.wisc.edu [146.151.98.17])
	by hub.freebsd.org (Postfix) with ESMTP id 16FF937B408
	for <FreeBSD-gnats-submit@freebsd.org>; Fri,  2 Nov 2001 22:56:49 -0800 (PST)
Received: (from karp@localhost)
	by rust098-017.resnet.wisc.edu (8.11.6/8.11.6) id fA36u5M39966;
	Sat, 3 Nov 2001 00:56:05 -0600 (CST)
	(envelope-from karp)
Message-Id: <200111030656.fA36u5M39966@rust098-017.resnet.wisc.edu>
Date: Sat, 3 Nov 2001 00:56:05 -0600 (CST)
From: Anatoly Karp <karp@math.wisc.edu>
Reply-To: Anatoly Karp <karp@math.wisc.edu>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: man ftpd(8) omits potentially crucial security warning
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         31720
>Category:       docs
>Synopsis:       man ftpd(8) omits potentially crucial security warning
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    freebsd-doc
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          doc-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Nov 02 23:00:02 PST 2001
>Closed-Date:    Wed Nov 21 02:39:59 PST 2001
>Last-Modified:  Wed Nov 21 02:41:47 PST 2001
>Originator:     Anatoly Karp
>Release:        FreeBSD 4.4-STABLE i386
>Organization:
private
>Environment:
System: FreeBSD rust098-017.resnet.wisc.edu 4.4-STABLE FreeBSD 4.4-STABLE #1: Wed Oct 31 03:26:58 CST 2001 karp@rust098-017.resnet.wisc.edu:/usr/obj/usr/src/sys/TOL_KERN6 i386


	
>Description:
Man ftpd(8) suggests giving ~ftp/pub directory the permission
bits of 777 without adequately explaining potentially
unpleasant security implications of such a step. It is
suggested that

	
>How-To-Repeat:
$ man ftpd
[snip]
         ~ftp/pub  Make this directory mode 777 and owned by ``ftp''.
                   Guests can then place files which are to be accessible
                   via the anonymous account in this directory.
[snip]


	
>Fix:
Change the corresponding paragraph to, say:

        ~ftp/pub  Make this directory mode 700 and owned by ``ftp''.
                  Making this directory world-writable will
		  open you to a variety of DoS attacks as
		  well as being used for warez.
		  	

	
>Release-Note:
>Audit-Trail:

From: Cyrille Lefevre <clefevre@citeweb.net>
To: Anatoly Karp <karp@math.wisc.edu>
Cc: FreeBSD-gnats-submit@freebsd.org
Subject: Re: docs/31720: man ftpd(8) omits potentially crucial security warning
Date: Sat, 3 Nov 2001 14:22:08 +0100 (CET)

 Anatoly Karp wrote:
 [snip]
 > >Description:
 > Man ftpd(8) suggests giving ~ftp/pub directory the permission
 > bits of 777 without adequately explaining potentially
 > unpleasant security implications of such a step. It is
 > suggested that
 > 
 > 	
 > >How-To-Repeat:
 > $ man ftpd
 > [snip]
 >          ~ftp/pub  Make this directory mode 777 and owned by ``ftp''.
 >                    Guests can then place files which are to be accessible
 >                    via the anonymous account in this directory.
 > [snip]
 > 	
 > >Fix:
 > Change the corresponding paragraph to, say:
 > 
 >         ~ftp/pub  Make this directory mode 700 and owned by ``ftp''.
 >                   Making this directory world-writable will
 > 		  open you to a variety of DoS attacks as
 > 		  well as being used for warez.
 
 IMHO, you shouldn't use the `DoS attacks' or `warez' terms unless
 you explain them. not everybody known what's a `DoS attacks' or a
 `warez'.
 
 Cyrille.
 -- 
 Cyrille Lefevre                 mailto:clefevre@citeweb.net
State-Changed-From-To: open->closed 
State-Changed-By: keramida 
State-Changed-When: Wed Nov 21 02:39:59 PST 2001 
State-Changed-Why:  
This is a duplicate of 30690, the changes it describes have been 
committed to -CURRENT and merged to -STABLE already. 
Thank you for your work, in submitting this report. 

http://www.FreeBSD.org/cgi/query-pr.cgi?pr=31720 
>Unformatted:
