[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] [RaQ3]Formmail widely server security

Subject: Re: [cobalt-users] [RaQ3]Formmail widely server security
From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
Date: Sun Feb 3 11:15:00 2002
Organization: nobaloney.net
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Jorge Ceballos wrote:

> Forget about formmail, secured or plain.
> I got hold of a php script much more secure and lighter on the CPU, and
> also is fool-proof to use.

The problem of course is that our customers can run CGI, and they will. 
And they'll find FormMail.  Usually an old version <frown>.  We now only
allow FormMail.pl v.1.9s on our systems, but it's not easy to enforce
<frown>.

> Contact me off-list to send you a copy (english or spanish)

I will <smile>, but how do you know it's secure?  Are you taking
someone's word for it, or are you that great an expert in PHP?

Jeff
-- 
Jeff Lasman <jblists@xxxxxxxxxxxxx>
Linux and Cobalt/Sun/RaQ Consulting
nobaloney.net
P. O. Box 52672, Riverside, CA  92517
voice: (909) 778-9980  *  fax: (702) 548-9484

Follow-Ups:
- Re: [cobalt-users] [RaQ3]Formmail widely server security
  - From: flash22

References:
- Re: [cobalt-users] [RaQ3]Formmail widely server security
  - From: Jorge Ceballos

Prev by Date: RE: [cobalt-users] Neomail 1.25-5 domain recognition?
Next by Date: Re: [cobalt-users] WARN - handler "cgi-wrapper" not found for ...
Previous by thread: Re: [cobalt-users] [RaQ3]Formmail widely server security
Next by thread: Re: [cobalt-users] [RaQ3]Formmail widely server security

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index