CRITICAL ======== NOT SO CRITICAL =============== - ABOR handling broken for SSL connections (does any client actually use it?) - Add -Wconversion - Don't leak SSL private key to compromised process? May be impossible. We'll see, would be an interesting security story. - Better reporting of failed uploads due to out of device space or quota all used. - Upload file size limits. - Improve FAQ, docs (ongoing..) - Sweedish, Russian etc. characters showing as ? in the log - many complaints. - "add_group" support. - Still reports FlashFXP broken when trying to do FXP. - Add negation, other support to regex handler. - Allow groups to be listed in user lists. - Allow space in username. - Minor: background should happen after listen has completed so that failure can result in a non-zero exit code. - option to chroot to home dir and THEN apply init_dir - separate upload/download max rates - select() is assuming Linux behaviour (not threatening stability) - add example global bandwidth limiting. - have a chown_uploads for non-anon users too; also more control over permissions of uploaded file ON THE BACK BURNER ================== - MLST, MLSD - LPRT, LPSV - log logout (pam session support provides this for locals) - Limits on GIDs allowed to authenticate? - Dynamic login info e.g. you are user XXX of YYY. - Handle SIGINT. - Session byte transfer counts in STAT output. - Test vsftpd with pam_opie (issues with challenge/response vs. FTP protocol?) - SITE GROUP support. - SITE UTIME? - Allow listener to listen on multiple IPs, protocols; bonus points if the different IPs can have different configs. NOT PLANNED =========== - telnet strings (no demand) - "Minimal" build support - transparent tar / compression support (no demand) - put anon FTP users in wtmp too? - Integrated test suite (I'm so lazy..) SORRY.