Full Disclosure mailing list archives
Re: Vulnerability in sourceforge.net
From: "J.A. Terranson" <measl () mfn org>
Date: Thu, 22 Jul 2004 16:36:35 -0500 (CDT)
On Thu, 22 Jul 2004, Gregory A. Gilliss wrote:
Really...FreeBSD comes with user nobody set to /sbin/nologin out of the box.
And this is bad or related how? I really do not see the connection to this default setting (a reasonable one) and an admin's failure to config their web server properly.
Maybe they should have chosen a better host OS?
What on earth does the host OS have to do with this?
On or about 2004.07.22 07:49:53 +0000, Todd Towles (toddtowles () brookshires com) said:Sounds like they should have configured that page a bit different...made it run under a little less access...or said I say..it is a mis-configuration.
Exactly! This is host OS independent. -- Yours, J.A. Terranson sysadmin () mfn org 0xBD4A95BF "...justice is a duty towards those whom you love and those whom you do not. And people's rights will not be harmed if the opponent speaks out about them." Osama Bin Laden - - - "There aught to be limits to freedom!" George Bush - - - Which one scares you more? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Vulnerability in sourceforge.net, (continued)
- Re: Vulnerability in sourceforge.net Buick Sk (Jul 21)
- RE: Vulnerability in sourceforge.net Andrew Poodle (Jul 21)
- Re: Vulnerability in sourceforge.net Dan Duplito (Jul 21)
- RE: Vulnerability in sourceforge.net Todd Towles (Jul 22)
- Re: Vulnerability in sourceforge.net Gregory A. Gilliss (Jul 22)
- Re: Vulnerability in sourceforge.net Jedi/Sector One (Jul 22)
- RE: Vulnerability in sourceforge.net Todd Towles (Jul 22)
- Re: Vulnerability in sourceforge.net Anders B Jansson (Jul 22)
- Re: Vulnerability in sourceforge.net steve menard (Jul 22)
- Re: Vulnerability in sourceforge.net a (Jul 22)
- RE: Vulnerability in sourceforge.net Todd Towles (Jul 22)
- Re: Vulnerability in sourceforge.net J.A. Terranson (Jul 22)
- Re: Vulnerability in sourceforge.net nicolas vigier (Jul 22)
- Re: Vulnerability in sourceforge.net nicolas vigier (Jul 25)