ProFTPD

Highly configurable GPL-licensed FTP server software

Current Versions

Stable: 1.3.4a Release Candidate: None

Mirrors and Downloads

• Download servers
• Web site mirrors
• PGP public keys
• MD5 & PGP signatures
• CVS Repository
• How to become a mirror

Newsroom

• News Flashes
• Contrib module news

Information

• What is ProFTPD?
• Features & Platforms
• Bug reporting system
• Bug reporting and security guidelines
• Sites powered by ProFTPD
• Forums

Documentation

• Docs index
• RFCs
• FAQ
• Userguide
• Howtos
• Standard Modules
• Contrib Modules
• Example configurations

Mailing Lists

• Available Lists
• Announce Archive
• Users Archive
• Development Archive

1.3.4a released

[11/Nov/2011]

The ProFTPD Project team is ready to release 1.3.4a to the community. This is a maintenance release, containing build fixes for the RPM package and several modules. The RELEASE_NOTES and NEWS files contain the full details.

1.3.3g, 1.3.4 released

[09/Nov/2011]

The ProFTPD Project team is pleased to release 1.3.3g to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.3 release. The RELEASE_NOTES and NEWS files contain the full details. Note that this will be the last maintenance release from the 1.3.3 branch.

We are also happy to release 1.3.4 to the community. This is the stable release of the 1.3.4 development cycle, containing multiple minor bugfixes and updates from the last RC. The RELEASE_NOTES and NEWS files contain, as always, the full details.

1.3.3f, 1.3.4rc3 released

[26/Sep/2011]

The ProFTPD Project team is happy to release 1.3.3f to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.3 release. The RELEASE_NOTES and NEWS files contain the full details.

We are also pleased to release 1.3.4rc3 to the community. This is the third release candidate of the 1.3.4 development cycle, containing multiple minor bugfixes and updates. The RELEASE_NOTES and NEWS files contain the full details.

1.3.3e, 1.3.4rc2 released

[01/Apr/2011]

The ProFTPD Project team is happy to release 1.3.3e to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.3 release. The RELEASE_NOTES and NEWS files contain the full details.

We are also pleased to release 1.3.4rc2 to the community. This is the second release candidate of the 1.3.4 development cycle, and contains numerous new features, including the mod_memcache and mod_tls_memcache modules, Memcache support, PCRE support, and many mod_sftp bugfixes. The RELEASE_NOTES and NEWS files contain the full details.

Update to the ProFTPD Compromise Report

[16/Feb/2011]

By analyzing log files recovered from the compromised server, we can confirm that the primary FTP site was compromised earlier than originally announced.

In addition to the previously reported period from 2010-Nov-28 to 2010-Dec-02, ftp.proftpd.org and the ProFTPD mirror network distributed files with malicious content on 2010-Nov-16 between about 08:00 UTC and 13:00 UTC.

In the weeks since, we've made several changes to restore and improve the security of our software distribution sites. We've rebuilt the compromised server from scratch, and implemented automated daily signature checks for current releases on ftp.proftpd.org and all official mirrors.

We'd like to thank everyone who offered and provided assistance, especially those who reported suspicious files downloaded during the earlier time window.

1.3.3d, 1.3.4rc1 released

[17/Dec/2010]

The ProFTPD Project team is happy to release 1.3.3d to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.3 release. The RELEASE_NOTES and NEWS files contain the full details.

We are also pleased to release 1.3.4rc1 to the community. This is the first release candidate of the 1.3.4 development cycle, and contains numerous new features, including the mod_deflate, mod_qos, and mod_ifversion modules and many mod_sftp bugfixes. The RELEASE_NOTES and NEWS files contain the full details.

ftp.proftpd.org compromised

[01/Dec/2010]

The ProFTPD Project team is sorry to announce that the Project's main FTP server, as well as all of the mirror servers, have carried compromised versions of the ProFTPD 1.3.3c source code, from the November 28 2010 to December 2 2010. All users who run versions of ProFTPD which have been downloaded and compiled in this time window are strongly advised to check their systems for security compromises and install unmodified versions of ProFTPD.

To verify the integrity of your source files, use the PGP signatures which can be found here as well as on the FTP servers.

The source code in CVS was not affected.

1.3.3c released

[29/Oct/2010]

The ProFTPD Project team has released 1.3.3c to the community. This is an important security release, containing fixes for a Telnet IAC handling vulnerability and a directory traversal vulnerability in the mod_site_misc module. The RELEASE_NOTES and NEWS files contain the full details.

1.3.3b released

[09/Sep/2010]

The ProFTPD Project team is happy to release 1.3.3b to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.3 release. The RELEASE_NOTES and NEWS files contain the full details.

1.3.3a released

[01/Jul/2010]

The ProFTPD Project team is happy to release 1.3.3a to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.3 release. The RELEASE_NOTES and NEWS files contain the full details.

1.3.2e, 1.3.3 released

[24/Feb/2010]

The ProFTPD Project team is pleased to release 1.3.2e to the community. This is a maintenance release, containing fixes for bugs found in the 1.3.2 in the 1.3.2 release. The RELEASE_NOTES and NEWS files contain the full details.

Note that this will be the last maintenance release from the 1.3.2 branch.

We are also happy to release 1.3.3 to the community. This is the stable release of the 1.3.3 branch, and contains minor additional fixes. The RELEASE_NOTES and NEWS files contain the full details.

1.3.2d, 1.3.3rc4 released

[12/Feb/2010]

The ProFTPD Project team is pleased to release 1.3.2d to the community. This is a maintenance release, containing fixes for bugs found in the 1.3.2 in the 1.3.2 release. The RELEASE_NOTES and NEWS files contain the full details.

We are also glad to release 1.3.3rc4 to the community. This is the fourth release candidate of the 1.3.3 development cycle, and contains fixes for mod_tls and mod_sftp build errors, memory leaks, and segfaults. The RELEASE_NOTES and NEWS files contain the full details.

1.3.2c, 1.3.3rc3 released

[10/Dec/2009]

The ProFTPD Project team is happy to release 1.3.2c to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.2 release. The RELEASE_NOTES and NEWS files contain the full details.

We are also pleased to release 1.3.3rc3 to the community. This is the third release candidate of the 1.3.3 development cycle, and contains new SFTP features, a fix for the SSL/TLS renegotiation vulnerability (CVE-2009-355), and an updated version of libtool. The RELEASE_NOTES and NEWS files contain the full details.

1.3.2b, 1.3.3rc2 released

[20/Oct/2009]

The ProFTPD Project team is happy to release 1.3.2b to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.2 release. The RELEASE_NOTES and NEWS files contain the full details.

We are also pleased to release 1.3.3rc2 to the community. This is the second release candidate of the 1.3.3 development cycle, and contains numerous new features, including many SSH/SFTP fixes, a new mod_sql_passwd module, support for "implicit" FTPS, and better handling of lost database connections. As always, the RELEASE_NOTES and NEWS files contain the full details.

1.3.2a, 1.3.3rc1 released

[30/Jun/2009]

The ProFTPD Project team is happy to release 1.3.2a to the community. This is a maintenance release, containing backported fixes for bugs found in the 1.3.2 release. The RELEASE_NOTES and NEWS files contain the full details.

We are also pleased to release 1.3.3rc1 to the community. This is the first release candidate of the 1.3.3 development cycle, and contains numerous new features, including the mod_exec, mod_shaper, and mod_tls_shmcache modules and SSH2, SFTP, and SCP support (via the mod_sftp module). The RELEASE_NOTES and NEWS files contain the full details.

1.3.2 released

[5/Feb/2009]

The ProFTPD Project team is happy to release 1.3.2 to the community. This is a bugfix release, including a SQL injection vulnerability fix. The RELEASE_NOTES and NEWS files contain the full details.