Bugtraq mailing list archives
Re: GHH Portal 1.1 (passwd.txt) Remote Password Disclosure Vulnerability
From: "Jamie Riden" <jamie.riden () gmail com>
Date: Mon, 30 Apr 2007 17:20:38 +0100
On 30 Apr 2007 11:10:51 -0000, crazy_king () eno7 org <crazy_king () eno7 org> wrote:
By Cr@zy_King crazy_king () eno7 org Biyosecurity.Net & Expw0rm.Com Thanks : Liz0 & DarkXBoyZ & Eno7 & ApAci & Uyuss & Crackers_Child & Th3_43k1R & Xoron & Ajannn Portal : GHH
Hi there, GHH is a honeypot, not a portal, and it is meant to expose this information. The file passwd.txt is actually a PHP script which generates a random password. http://ghh.sourceforge.net/introduction.php describes briefly how GHH works. cheers, Jamie -- Jamie Riden, CISSP / jamesr () europe com / jamie () honeynet org uk UK Honeynet Project: http://www.ukhoneynet.org/
Current thread:
- GHH Portal 1.1 (passwd.txt) Remote Password Disclosure Vulnerability crazy_king (Apr 30)
- Re: GHH Portal 1.1 (passwd.txt) Remote Password Disclosure Vulnerability Jamie Riden (Apr 30)