[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Re: Re: Re: Re: SSI Vuln on cobalt

Subject: Re: [cobalt-security] Re: Re: Re: Re: SSI Vuln on cobalt
From: Jan Wildeboer <jan.wildeboer@xxxxxx>
Date: Thu, 25 Apr 2002 12:34:23 +0200
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Chris Adams wrote:

However, like I said, I really do think this is a moot point, because I
think that anything you can put in one .htaccess file can be overriden
by a .htaccess file in a subdirectory.  You could play a never-ending
game of tag trying to follow a users' subdirectory creation.

Don't forget the human factor. If you find someone doing nasty thingsyou can try everything on a technicla level to stop him - or simplyblock him :-)

As a SysAdmin it is my task to make sure my users follow the defined andagreed terms of use. If they don't - they get a warning and as a finalresort they get closed out.


A very simple solution that has proved to work :-)

my .02 only

Jan Wildeboer

References:
- [cobalt-security] SSI Vuln on cobalt
  - From: Brett Wright
- Re: [cobalt-security] Re: Re: SSI Vuln on cobalt
  - From: Michael Stauber
- [cobalt-security] Re: Re: Re: SSI Vuln on cobalt
  - From: Chris Adams
- Re: [cobalt-security] Re: Re: Re: SSI Vuln on cobalt
  - From: Gerald Waugh
- Re: [cobalt-security] Re: Re: Re: SSI Vuln on cobalt
  - From: Jeff Lasman
- [cobalt-security] Re: Re: Re: Re: SSI Vuln on cobalt
  - From: Chris Adams

Prev by Date: [cobalt-security] Re: Re: Re: Re: SSI Vuln on cobalt
Next by Date: Re: [cobalt-security] https for RAQ admin pages?
Previous by thread: [cobalt-security] Re: Re: Re: Re: SSI Vuln on cobalt
Next by thread: Re: [cobalt-security] Re: SSI Vuln on cobalt

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index