Re: [Full-Disclosure] Vulnerability in sourceforge.net
Date: Thu Jul 22 2004 - 17:36:35 EDT
On Thu, 22 Jul 2004, Gregory A. Gilliss wrote:
> Really...FreeBSD comes with user nobody set to /sbin/nologin out of the
> box.
And this is bad or related how? I really do not see the connection to
this default setting (a reasonable one) and an admin's failure to config
their web server properly.
> Maybe they should have chosen a better host OS?
What on earth does the host OS have to do with this?
> On or about 2004.07.22 07:49:53 +0000, Todd Towles (toddtowles@brookshires.com) said:
>
> > Sounds like they should have configured that page a bit different...made it
> > run under a little less access...or said I say..it is a mis-configuration.
Exactly! This is host OS independent.
-- Yours, J.A. Terranson sysadmin@mfn.org 0xBD4A95BF "...justice is a duty towards those whom you love and those whom you do not. And people's rights will not be harmed if the opponent speaks out about them." Osama Bin Laden - - - "There aught to be limits to freedom!" George Bush - - - Which one scares you more? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.htmlReceived on Thu Jul 22 18:40:54 2004
This archive was generated by hypermail 2.1.8 : Thu Jul 22 2004 - 19:11:40 EDT
