ProFTPD.org Compromised, Backdoor Distributed 152
Orome1 writes "A warning has been issued by the developers of ProFTPD, the popular FTP server software, about a compromise of the main distribution server of the software project that resulted in attackers exchanging the offered source files for ProFTPD 1.3.3c with a version containing a backdoor. It is thought that the attackers took advantage of an unpatched security flaw in the FTP daemon in order to gain access to the server."
Should have used vsftpd (Score:5, Funny)
Re:FTP (Score:5, Funny)
People still use Joomla?
Wait, what was the hole again? (Score:5, Funny)
resulted in attackers exchanging the offered source files for ProFTPD 1.3.3c with a version containing a backdoor. It is thought that the attackers took advantage of an unpatched security flaw in the FTP daemon in order to gain access to the server.
So instead of downloading an FTP server with a security hole, you could download one with... a security hole.
Re:not on Debian stable (Score:2, Funny)
thankfully that fancy new version will be available from official repository for Debian stable in about 100 years or so..
That newfangled FTP protocol is still pretty new to the Debian Stable folks.