Also another 'fix' would be to isolate system commands from the hlds
stuff to prevent them from remotely fetching files, compiling
programs, running perl/bash etc
At 01:24 PM 4/6/2006, Steven Hartland wrote:
How is this different from uploading a not text file and running
that instead? If you allow people to create arbitrary files on the
servers they will be able to hack it simple.
The fix is dont allow ftp access.
Steve
----- Original Message -----
From: "Adam Grzesko" <[EMAIL PROTECTED]>
All they have is server's console exposed via WEB with input and
output and FTP access.
================================================
This e.mail is private and confidential between Multiplay (UK) Ltd.
and the person or entity to whom it is addressed. In the event of
misdirection, the recipient is prohibited from using, copying,
printing or otherwise disseminating it or any information contained in it.
In the event of misdirection, illegible or incomplete transmission
please telephone (023) 8024 3137
or return the E.mail to [EMAIL PROTECTED]
_______________________________________________
To unsubscribe, edit your list preferences, or view the list
archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please
visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux
