Bugtraq mailing list archives
Re: [BUGTRAQ] php breaks safe mode
From: Raptor <raptor () 0xdeadbeef eu org>
Date: Thu, 5 Jul 2001 12:11:10 +0200 (CEST)
On Tue, 3 Jul 2001, Joost Pol wrote:
Well, two changes do occur. 1. User could obtain the uid of the webserver. (nobody access) In a decent configured hosting machine, the impact would be minor. And *all* hosting machines are configured decently, right? (:
What do you exactly intend with "minor impact"? A user with the uid of the webserver can at least kill the webserver itself... This should definitely be an issue for a web hosting provider. :raptor Antifork Research, Inc. @ Mediaservice.net Srl http://www.0xdeadbeef.eu.org http://www.mediaservice.net
Current thread:
- php breaks safe mode Joost Pol (Jul 01)
- Re: php breaks safe mode Laurent Papier (Jul 02)
- Re: php breaks safe mode Joost Pol (Jul 02)
- Re: php breaks safe mode Laurent Papier (Jul 03)
- Re: php breaks safe mode Patrick Oonk (Jul 03)
- Re: php breaks safe mode Joost Pol (Jul 02)
- Re: [BUGTRAQ] php breaks safe mode Joe Harris (Jul 03)
- Re: [BUGTRAQ] php breaks safe mode Joost Pol (Jul 03)
- Re: [BUGTRAQ] php breaks safe mode Raptor (Jul 05)
- Re: [BUGTRAQ] php breaks safe mode H D Moore (Jul 05)
- Re: [BUGTRAQ] php breaks safe mode Steffen Dettmer (Jul 06)
- Re: [BUGTRAQ] php breaks safe mode Joost Pol (Jul 03)
- Re: [BUGTRAQ] php breaks safe mode Steffen Dettmer (Jul 05)
- Re: [BUGTRAQ] php breaks safe mode Sander Steffann (Jul 06)
- Re: php breaks safe mode Laurent Papier (Jul 02)