Release Notes: This release has a number of bugfixes and a few additional features beyond 1.2.1. Of particular interest to many are the security fixes. The globbing functions are now internally limited in order to prevent glob-related Denial-of-Service attacks that were popularized on Bugtraq during March. Three new directives which can be used to set kernel-based resource limits on the proftpd processes have also been added. These can be used to limit the risk that future DoS attacks can impose on a given system.
Release Notes: A relatively major issue was discovered with session.groups which may cause any group-expressions inside of <Limit> (DenyGroup, etc.) to malfunction, new mod_sql and mod_ldap versions from from their respective maintainers, and a few other minor fixes.