[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] MAJOR BUG, Browse any directory view any file

Subject: Re: [cobalt-users] MAJOR BUG, Browse any directory view any file
From: "Fragga" <fragga@xxxxxxxxxxxx>
Date: Wed May 28 07:13:00 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

> Fragga, can you elaborate on 'default install'? What steps can he take
> to 'post install' to eliminate the problem? I heard that skel can be
> used to accomplish something like this server wide, is that true?
> Setting permissions server wide can be tedious.

ermm well running php in safe mode u specify a number of parameters like a
directory where exec(), passthru() etc can only get to, i.e they can only
execute binarys within that given directory. more linkage here
http://php.lamphost.net/manual/en/features.safe-mode.php

perl / cgi not sure.. is there something similiar to php's safe mode ? maybe
havent checked.. maybe chmod binarys to be used by root only ?

personally i dont allow cgi or php to anyone i dont trust.. roughly
translated to "you can only host static html on my cobalt" :p

anyway old bug theres ways to patch em, google is your friend. anyway
original point was to david is this what he was talking about as its been
like this since i started using linux.

fragga

References:
- RE: [cobalt-users] MAJOR BUG, Browse any directory view any file
  - From: Robert Fitzpatrick

Prev by Date: Re: [cobalt-users] MAJOR BUG, Browse any directory view any file
Next by Date: RE: [cobalt-users] Sendmail Intermittent
Previous by thread: RE: [cobalt-users] MAJOR BUG, Browse any directory view any file
Next by thread: Re: [cobalt-users] MAJOR BUG, Browse any directory view any file

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index