[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Security pb or not ?

Subject: [cobalt-users] Security pb or not ?
From: "Arnaud L." <alahaye@xxxxxxxxxx>
Date: Tue Nov 26 12:55:01 2002
Organization: Arnaud L.
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Hi all,
On Raq4, when i create a new virtualhost the directory was created on
/home/sites like

drwxrwsr-x 6 nobody site147 1024 Aug 22 22:14 site147

The problem is that user for the site 146 for example can browse in PHP the
directory of site 147 (by a simple readdir) because they have the same
User/Group on httpd.conf and PHP...

It is a bug ? That poses problems of confidentiality

Follow-Ups:
- Re: [cobalt-users] Security pb or not ?
  - From: Steve Werby

Prev by Date: Re[2]: [cobalt-users] root partition is at 93%
Next by Date: [cobalt-users] vpn
Previous by thread: Re: [cobalt-users] Mailling List - Message going to multiple lists
Next by thread: Re: [cobalt-users] Security pb or not ?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index