See .... I love that phone call approach. That's one that most hackers miss I think. Of course it requires human contact so it may be beyond their skill level......
-----Original Message----- From: Claude Schneegans [mailto:[EMAIL PROTECTED] Sent: Friday, October 07, 2005 9:01 AM To: CF-Talk Subject: Re: ColdFusion Security Holes - Best Practices >>it will generate an error message that gives you the IP address of the CF server: This guy talks about something he knows nothing about. First, the "IP addresse" exposed is ... yours, not a big help if you're a hacker... Secondly, I'm pretty sure any hacker can get the IP address behind any domaine name just with a simple DNS lookup; and even a beginner can consult one of the may sites that offer the service for free: http://www.hcidata.co.uk/host2ip.htm http://www.whois.sc/ http://www.networksolutions.com/whois/index.jhtml To cite just a few that will even give you the phone number of the domaine name owner so you can even call him directly and ask him whatever you want to know about his server ;-)) -- _______________________________________ REUSE CODE! Use custom tags; See http://www.contentbox.com/claude/customtags/tagstore.cfm (Please send any spam to this address: [EMAIL PROTECTED]) Thanks. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:220325 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
