From: barmar@think.com (Barry Margolin)
Newsgroups: alt.security
Subject: Re: avast ye, swabs
Date: 19 May 1992 19:57:28 GMT
Organization: Thinking Machines Corporation, Cambridge MA, USA
Lines: 22
Message-ID: <vbmj8INNnk@early-bird.think.com>
References: <2a190e81@babyoil.ftp.com>

In article <2a190e81@babyoil.ftp.com> hobbit@babyoil.ftp.com (*Hobbit*) writes:
>What do most people do about the warez kids who run around stuffing things
>like "vistapro.arj" up into whatever writeable directories they can find
>under folks' anonymous FTP trees?  Is it worth bothering to track it?  It
>looks to primarily be a one-shot deal where someone ships in the files and
>then six other people immediately grab them, but they don't clean up after
>themselves in most cases.

When we noticed this happening at our site I patched ftpd so that anonymous
has a umask of 662.  This way, anonymous FTP users can't download the files
that are uploaded by other anonymous users.  We use the writable
directories under ~ftp so that colleagues can upload files to our
employees, so I don't think this has caused any problems.

In addition, I modified it so that anonymous can't delete files.  This
prevents them from erasing their tracks once they've created these
unreadable files.
-- 
Barry Margolin
System Manager, Thinking Machines Corp.

barmar@think.com          {uunet,harvard}!think!barmar