COMMAND

    WarFTPD

SYSTEMS AFFECTED

    Win NT, 9x

PROBLEM

    Mnemonix  found  following.   The  waruser.dat  file  contains the
    password in clear  text.  So  just in case  - anyone who  uses the
    same password for their NT Administrator account, should  probably
    change  one  of  them  -  preferably  the Administrator account' s
    password.   This happens  in War  FTP Daemon  1.70 beta which does
    store the  user database,  including passwords,  in 'clear'  text.
    This is simply because the  encryption module in the beta  version
    of the new server is unimplemented at this time.

SOLUTION

    As said before, change password.  Under NT you can restrict access
    (under 9x not) with standard NT security.  The 'official'  release
    (1.65/1.66x) does encrypt  the user database,  and so will  beta 2
    of 1.70.