Matt Dillon <[EMAIL PROTECTED]> writes: > The real problem here is the CGI script / server-side design allowing > the breakin in the first place. That's not a fixable problem when the customer is meant to provide his own scripts. I've worked on such a scenario before; we managed to chroot the scripts so we're reasonably confident that they can't do much harm except to themselves. DES -- Dag-Erling Smorgrav - [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
- Protections on inetd (and /sbin/* /usr/sbin/* in gene... Michael R. Wayne
- Re: Protections on inetd (and /sbin/* /usr/sbin/... Dima Dorfman
- Re: Protections on inetd (and /sbin/* /usr/sbin/... Walter W. Hop
- Re: Protections on inetd (and /sbin/* /usr/s... Peter Pentchev
- Re: Protections on inetd (and /sbin/* /u... David Malone
- Re: Protections on inetd (and /sbin/... Peter Pentchev
- Re: Protections on inetd (and /sbin/* /u... Aleksandr A.Babaylov
- Re: Protections on inetd (and /sbin/... mouss
- Re: Protections on inetd (and /... Matt Dillon
- Re: Protections on inetd (a... Dag-Erling Smorgrav
- Re: Protections on inetd (and /sbin/* /usr/s... mouss
- Re: Protections on inetd (and /sbin/* /usr/sbin/... Daniel C. Sobral
- Re: Protections on inetd (and /sbin/* /usr/sbin/... Gordon Tetlow
- Re: Protections on inetd (and /sbin/* /usr/s... Dag-Erling Smorgrav
- Re: Protections on inetd (and /sbin/* /u... Tony Finch
- Re: Protections on inetd (and /sbin/... Dag-Erling Smorgrav
- Re: Protections on inetd (and /... Andy Farkas
