Daley Lay <[EMAIL PROTECTED]> said:
> Hi Devs, > > Details: > > Owl is a multi user document repository (knowledgebase) system written > in PHP and stores its data in a MySQL database... I believe the documents are installed in a directory tree on the server hard drive, not in the mySQL database. These apps seem to state they offer per user restrictions. If the app is using PHP for file uploads, all users have full rights to the upload directory. In addition, if the app is not implementing per directory apache security, there is no security at all. Regards, -- Darrell May DMC Netsourced.com http://netsourced.com http://myEZserver.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
