[Zope] Security flaw in Zope FTP server?
Brian Lloyd
Brian@digicool.com
Fri, 3 Mar 2000 11:53:22 -0500
http://classic.zope.org:8080/Collector/
Thanks!
Brian Lloyd brian@digicool.com
Software Engineer 540.371.6909
Digital Creations http://www.digicool.com
> -----Original Message-----
> From: jiva@devware.com [mailto:jiva@devware.com]
> Sent: Friday, March 03, 2000 12:13 PM
> To: Brian Lloyd
> Cc: zope@zope.org
> Subject: Re: [Zope] Security flaw in Zope FTP server?
>
>
> On Fri, Mar 03, 2000 at 09:29:28AM -0500, Brian Lloyd wrote:
> > We should look into the handling of those commands though. I don't
> > manage the FTP code so I don't have enough deep Zen to know what
> > the "correct" behavior is, but it seems that if it's giving a
> > false positive then something is probably not being handled
> > totally correctly. Can you make an post in the Collector about
> > this so that it doesn't get lost in the flow of the list?
>
> Sure! How do I do that?
>
> --
> If we suffer tamely a lawless attack upon our liberty, we
> encourage it,
> and involve others in our doom.
> -- Samuel Adams
>