27-04-2007, 16:08
Uyuyuy!!!!! Al parecer el tema es bastante feo:
http://discussions.apple.com/thread.jspa...16#4461816
Re: FTP Security Disaster
Posted: Apr 25, 2007 5:51 AM in response to: webjedi Well, after I tested this, I can tell you what happened.
The 2007-004 Security Update replaced the http://ftp.plist in /System/Library/LaunchDaemons from Mac OS X server with the version from Mac OS X *Client*. There is no check in the installer if the update installs on client or Server, and it is the same update for both.
But, of course, FTP services on client and server are *very* different. With the client http://ftp.plist from client on the server, it is ftpd which is launched, not xftpd.
The solution is to replace the http://ftp.plist with a previous version from Mac OS X Server
http://discussions.apple.com/thread.jspa...16#4461816
Re: FTP Security Disaster
Posted: Apr 25, 2007 5:51 AM in response to: webjedi Well, after I tested this, I can tell you what happened.
The 2007-004 Security Update replaced the http://ftp.plist in /System/Library/LaunchDaemons from Mac OS X server with the version from Mac OS X *Client*. There is no check in the installer if the update installs on client or Server, and it is the same update for both.
But, of course, FTP services on client and server are *very* different. With the client http://ftp.plist from client on the server, it is ftpd which is launched, not xftpd.
The solution is to replace the http://ftp.plist with a previous version from Mac OS X Server