[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Qube2 Crashes without obvious cause

Subject: Re: [cobalt-users] Qube2 Crashes without obvious cause
From: Mike Vanecek <nospam99@xxxxxxxxxxxx>
Date: Wed Jan 17 12:25:01 2001
Organization: anonymous
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Mon, 15 Jan 2001 22:41:03 -0500, "Franklin S. Werren"
<fswerren@xxxxxxxxxxxx> wrote:

[snip]

:>Also Cobalt has a security problem with the Qube2
:>They forgot to shadow the password file.
:>
:>To check this out, go in as admin either in
:>ftp which is easier or telnet into the Qube and
:>look at the passwd file.... I could say OOPS
:>if I was a Cobalt tech (they did!!!)

I have been complaining about the limited password support on the Q2 for
several months now. Even posted a couple of messages on this list with zero
interest.

:>
:>More info on shadow passwords at
:>www.bagpipes.net/security 
:>
:>If your cube is used for users, do not allow
:>cgi scripting for the end user and do not allow
:>Telnet either.... until this problem is fixed.
:>Be sure your ftp does not allow the end user
:>to look around other than his/her home directory
:>otherwise just pray until Cobalt fix this problem.

What makes you think that Cobalt will fix it?

Follow-Ups:
- RE: [cobalt-users] Qube2 Crashes without obvious cause
  - From: Rodolfo J. Paiz \(E-mail\)

References:
- Re: [cobalt-users] Qube2 Crashes without obvious cause
  - From: Malcolm McLeary
- Re: [cobalt-users] Qube2 Crashes without obvious cause
  - From: Franklin S. Werren

Prev by Date: [cobalt-users] http.conf problem
Next by Date: [cobalt-users] FormMail & Majordomo (second part)
Previous by thread: Re: [cobalt-users] Qube2 Crashes without obvious cause
Next by thread: RE: [cobalt-users] Qube2 Crashes without obvious cause

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index