Release Notes: This release adds aecurity fix to avoid resource exhaustion when globbing paths.
Release Notes: A security problem when globbing paths was fixed.
Release Notes: Security fixes were made for the internal ls and for VU #590371. Tru64 Security Integration Architecture (SIA) authentication is supported. The shadow password expiry check was fixed for users with large sp_max values. Portability improvements were made.
Release Notes: Portability improvements.
Release Notes: This release will not split large commands into multiple commands; it will just fail on them. This prevents cross-site request forgery (CSRF)-like attacks, when a Web browser is used to access an FTP server. The option -C has been enhanced to support an optional @host ('-C user[@host]'): thsi checks whether the specified user connecting from the specified host would be granted access by ftpusers(5). IPv6 is supported in the host directive of ftpusers(5).
Release Notes: This release enables PAM support and improves portability.
Release Notes: A buffer overflow in the local version of glob(3) has been fixed. The option -D has been added to run as a stand-alone daemon. The ftpd.conf(5) options hidesymlinks and recvbufsize have been added. This release enforces account expiration, and supports shadow password aging where appropriate. It returns 450 instead of 550 upon NLST errors. There are portability fixes and improvements.
Release Notes: This release fixes signal races in the parser and portability to BSD/OS 3.0.
Release Notes: This release updates the replacement fts(3) code with a fix for a potential race condition. It improves portability to Tru64, IRIX, and other LP64 platforms.
Release Notes: Portability fixes were made for Darwin, FreeBSD, and Tru64. The license was updated.