I would assume that the risk this poses can be mitigated by running
SRCDS under a limited user account which does not have write access to
anything outside of your srcds directory and maybe a home directory.
Without a size quote on these directories, the disk could probably still
be filled, but only by uploading tons of stuff into the srcds directory.
- Dave
Brian Rak wrote:
> Yay for another exploit:
> http://aluigi.altervista.org/adv/sourceupfile-adv.txt
>
> _______________________________________________
> To unsubscribe, edit your list preferences, or view the list archives, please
> visit:
> http://list.valvesoftware.com/mailman/listinfo/hlds_linux
>
--
Dave Parker
Utica College
Integrated Information Technology Services
(315) 792-3229
Registered Linux User #408177
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please
visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux
