[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] WRITETEST

Subject: Re: [cobalt-users] WRITETEST
From: flash22@xxxxxxx
Date: Fri Aug 11 10:50:22 2000

On Tue, 8 Aug 2000, Aeron Jarrett wrote:
> what is the 'language' that these commands belong to (http?) and how would
> tehy send this information through to your server? By a form?

http, yes, it's from the apache logfile....I remived the IP address
because i have a ticket open with this clown's isp ;)

It's admittedly a VERY lame hack, he's just using the web publishing
features on netscape more than likely....

Cobalt's default config denies access via PUT anyhow, so nothing happens,
but still, attempting to bypass authentication protocols and gain
unauthorized access to a web server  violates a few federal laws...

On the otherhand, since the most likely case is it's some kid the best i
probably can hope for is to scare the pants outta him -/

I mention it on the list primarily because enabling PUT or DELETE in
htaccess would make people vulneravle to this kind of silly hack, and
because it's helpfull to see the clueless are still out there ...

g.

Prev by Date: Re: [cobalt-users] Cobalt Database Help
Next by Date: RE: [cobalt-users] Smart UPS + RaQ4
Previous by thread: [cobalt-users] WRITETEST
Next by thread: Re: [cobalt-users] Port Sentry

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index