RE: [cobalt-users] New FormMail script

[Surfbaud <error404@xxxxxxxxxxxxxx>]

At 11:25 29/04/2002 -0400, you wrote:
> I just don't understand why he
> gets attacked over and over for something he did when he was 15...and it
> wasn't like it was a bad thing.


I have never attacked the person, just the scripts, they *are* crap in the 
sense that they are not secure, and that lack of security is extremely well 
known about in the black hat community, and is actively sought out to be 
exploited, and if you get exploited your servers get hijacked to send out 
hundreds of thousands or even millions of spam e-mails, and the result of 
that is your servers and by redux all your paying clients find themselves 
in a black hole, with a significant and important (professionally) block of 
the net "sending you to chelsea"...

now i dunno about your users, but not all of them have levels of competence 
where they happily su around root in a nix enviornment, they certainly 
aren't capable of telling a secure formmail from and insecure one (hell, 
many of the ppl on this list seem to have difficulty with that one) and 
they will just upload any old shit to their webspace... IF YOU LET THEM.

It is FAR easier to tell users, as I do, all matt's scripts are banned, 
upload them and I terminate you, if you want to send mail then use 
sendmail, eg ASK YOUR HOST...   my users RENT amenities from me, just like 
an apartment, you don't rent one person an apartment and then let them set 
up a fireworks factory inside... I really cannot understand why so many ppl 
on this list seem afraid of their customers... they are MY servers and I 
have other clients to care for, so no matts scripts, no jTERM, etc etc etc.

I just don't understand why ppl do not want to take responsobility for 
their servers and what they allow their users to do on those servers.
--
================================
 jb@xxxxxxxxxxxx / www.surfbaud.org / 2002
================================