On Fri, 30 Nov 2001, Rick Kelly wrote:

> David Brownlee said:
>
> >	wu-ftpd-2.6.1nb1 committed to pkgsrc - contains the globfix,
> >	and verified to remove the vulnerability on a RedHat 5.0 system
> >	(All of my NetBSD boxes run the NetBSD ftpd)
>
> What I did was apply all three patches that they had.
>
> ftpglob.patch
> missing_format_strings.patch
> nlst-shows-dirs.patch

	Plus pasv-port-allow-correction.patch :)

-- 
		David/absolute		-- www.netbsd.org: No hype required --