I removed the unwieldly wu-ftp stuff from the server today (wieldiness is proportional to my own knowledge) and replaced it with the ever promising ProFTP server. Of notability is its ability to avoid recursive DNS lookups which were slowing things down. If I see an attack, I’ll just do a whois.