SSLUG-msg01017.html

[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]

[an error occurred while processing this directive] [an error occurred while processing this directive]

	Home		Subscribe		Mail Archive		Forum		Calendar		Search
	Date:				Thread:

Re: [TEKNIK] Bagdør i Linux.

To: sslug@sslug
Subject: Re: [TEKNIK] Bagdør i Linux.
From: Allan Jacobsen <sslug@sslug>
Date: Thu, 27 Apr 2000 20:23:12 +0200
Organization: Film & Farver ApS
References: <NDBBKCNILKBHGKAIPJBHMEJNCCAA.hha@pine.dk>

Hans-Henrik Andresen wrote:
> 
> http://www.comon.dk/i/i.asp?id=5636
> 
> Bagdør i Red Hat Linux

Punkt 1.
Det var ikke en bagdør, det var en hoveddør, den var nemlig
dokumenteret, hvis man gad læse dokumentationen til webinterfacet
til Pirahna. Hvorfor redhat så sætter et default password til
et webinterface, det må guderne vide.

Punkt 2.
Derudover var der en sikkerhedsfejl i et af de phpscripts, der
udgør webinterfacet til Pirahna, så det tillod at man kunne
køre kommandoer på maskinen med de brugerrettigheder, som apache
kører med, dvs. nobody, så skaden er nok ikke så stor de fleste
steder.

-- 
MVH / Best Regards
Allan Jacobsen, AJ17-DK
IT nyheder set gennem danske briller: http://slashit.dk

References:
- Bagdør i Linux.
  - From: Hans-Henrik Andresen

Prev by Date: uventet nedbrud .---. hvad skete!?!
Next by Date: Re: [TEKNIK] uventet nedbrud .---. hvad skete!?!, Mads Bondo Dydensborg
Previous by Thread: Re: [TEKNIK] Bagdør i REDHAT Linux.
Next by Thread: Re: [TEKNIK] Seriel kabel til APC Smart-UPS 1400
Index(es)
- Date Index
- Thread Index

Home

Subscribe

Mail Archive

Index

Calendar

Search

Questions about the web-pages to <www_admin>.

Last modified 2005-08-10, 21:38 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *