I have just had an intrusion on my server and I am trying to identify how the intruder got access.
It has been suggested to me that vsftpd-2.0.5 may have some security issues.
On checking vsftpd I find that vsftpd was updated to vsftpd-2.0.5 in August 2006 (5 years ago)
In March 2011 it was updated to version: vsftpd-2.3.4.
So, I decided that it was time I got the update.
yum update vsftpd
No Packages marked for Update
Is it possible that Centos is 5 years behind with vsftpd ???