Re: [Full-Disclosure] Temporary Files and Web Sites (swp, ~, etc)
From: Nicob <nicob@nicob.net>
Date: Thu Aug 12 2004 - 06:08:05 EDT
Date: Thu Aug 12 2004 - 06:08:05 EDT
Le jeu 12/08/2004 à 08:45, bugtraq@beyondsecurity.com a écrit :
> There isn't much you can do beside:
> 1) Avoid leaving these files behind
> 2) Make rules in Apache/whatever to block access to .swp, ~, etc files.
The babelweb scanner [1] is already looking for backup files under the
webroot. Tested extensions : '.old', '.bak', '~', '.orig', '.backup',
'.bad'
[1] : http://www.hsc.fr/ressources/outils/babelweb/download/README
-- Nicob <nicob@nicob.net> _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.htmlReceived on Thu Aug 12 09:49:48 2004
This archive was generated by hypermail 2.1.8 : Thu Aug 12 2004 - 10:02:13 EDT
Custom Search
