[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Break-in attempts to Linux host
On Fri, 01 Oct 1999 11:41:33 +0200, Eli Marmor <marmor@elmar.co.il> wrote:
>> EM>> 6. The only interesting news about hackers was the details of the PC-
>> EM>> Week hacking. Linux, Perl, crontab, CGI bugs, SSI, etc. A real
>> EM>> interesting story. a MUST read for any Linux user. Much more
>> EM>> interesting than the local boring news.
>>
>> There's already full story? I must be missing it, could you share the URL?
>
>Again, I didn't think that there was any need to mention this URL
>after it received more than million hits yesterday, but maybe I'm
>wrong again, so here it comes:
> http://hispahack.ccc.de/en/mi019en.htm
>
>The exploits are also attached to this URL. Try them on your host
>(or your enemy (hey, just joking...)).
Just to calm down everyone, the PC-Week security hole exploited was due to a
commercial CGI script. This specific security hole is NOT present in a normal
Redhat installation (although I bet there are other holes waiting to be found
and exploited...). I've read this URL yesterday, but got only through half of
it. Interesting reading indeed.
Udi
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il