|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Verity/Search'97 Security Problems
Jay Soffian (jay
CIMEDIA.COM)Thu, 16 Jul 1998 17:28:47 -0400
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Anonymous: "EMERGENCY: new remote root exploit in UW imapd"
- Previous message: Jay Soffian: "Re: Verity/Search'97 Security Problems"
- Maybe in reply to: Jay Soffian: "Verity/Search'97 Security Problems"
- Next in thread: Joe D'Andrea: "Re: Verity/Search'97 Security Problems"
Last message, I promise. My brain isn't working today. suid (or sgid) is a terrible idea. Using something other than '.orig' works, but that's security by obscurity. Probably, you are best using a <files> section (or equiv if not Apache) to protect the '.orig' binaries. j. -- Jay Soffian <jay
- Next message: Anonymous: "EMERGENCY: new remote root exploit in UW imapd"
- Previous message: Jay Soffian: "Re: Verity/Search'97 Security Problems"
- Maybe in reply to: Jay Soffian: "Verity/Search'97 Security Problems"
- Next in thread: Joe D'Andrea: "Re: Verity/Search'97 Security Problems"