sir please give the solution how can i give restriction for particuler IP for ftp
with regards amitabh pandey --- [EMAIL PROTECTED] wrote: > Send ilugd mailing list submissions to > [EMAIL PROTECTED] > > To subscribe or unsubscribe via the World Wide Web, > visit > http://frodo.hserus.net/mailman/listinfo/ilugd > or, via email, send a message with subject or body > 'help' to > [EMAIL PROTECTED] > > You can reach the person managing the list at > [EMAIL PROTECTED] > > When replying, please edit your Subject line so it > is more specific > than "Re: Contents of ilugd digest..." > > > Please trim replies before posting. > > Today's Topics: > > 1. Re: (fwd) [SECURITY] [DSA 457-1] New wu-ftpd > packages fix > multiple vulnerabilities (Sandip Bhattacharya) > 2. Re: add users (vivek khurana) > 3. Re: add users (Raj Mathur) > 4. Re: add users (vivek khurana) > 5. Re: [LIH](fwd) [SECURITY] [DSA 457-1] New > wu-ftpd packages > fix multiple vulnerabilities (Suresh > Ramasubramanian) > 6. Re: add users (Raj Mathur) > 7. substitute for corel draw (Sudev Barar) > 8. [OT] sapm from amkette (Raj Shekhar) > 9. Compatible internal modems list... (bipin > sartape) > 10. Crisis with Corrupt Open Office File > ([EMAIL PROTECTED]) > 11. Re: Crisis with Corrupt Open Office File > (Tarun Dua) > 12. Re: Compatible internal modems list... (Sandip > Bhattacharya) > 13. Re: Compatible internal modems list... (Mejo > Jose) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Tue, 09 Mar 2004 22:49:55 +0530 > From: Sandip Bhattacharya <[EMAIL PROTECTED]> > Subject: Re: [ilugd] (fwd) [SECURITY] [DSA 457-1] > New wu-ftpd packages > fix multiple vulnerabilities > To: The Linux-Delhi mailing list > <[EMAIL PROTECTED]> > Message-ID: <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii; > format=flowed > > Raj Mathur wrote: > > > CAN-2004-0148 - Glenn Stewart discovered that > users could bypass the > > directory access restrictions imposed by the > restricted-gid option by > > changing the permissions on their home directory. > On a subsequent > > login, when access to the user's home directory > was denied, wu-ftpd > > would fall back to the root directory. > > > > This one was hilarious. :)) > > I have started developing a sense of humour about > vulnerabilities (until > one day someone breaks into my servers, and turns > humour into tragedy). > > > - Sandip > > > -- > Sandip Bhattacharya > sandip (at) puroga.com > Puroga Technologies Pvt. Ltd. > Work: http://www.puroga.com Home: > http://www.sandipb.net > > GPG: 51A4 6C57 4BC6 8C82 6A65 AE78 B1A1 2280 A129 > 0FF3 > > > > > ------------------------------ > > Message: 2 > Date: Tue, 9 Mar 2004 09:38:42 -0800 (PST) > From: vivek khurana <[EMAIL PROTECTED]> > Subject: Re: [ilugd] add users > To: The Linux-Delhi mailing list > <[EMAIL PROTECTED]> > Message-ID: > <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii > > > --- Sandip Bhattacharya <[EMAIL PROTECTED]> > wrote: > > > > I think it is safer to try using sudo. You will > have > > to give the web > > server uid the right to use sudo for this program. > > Just be very careful > > about screening inputs to your script. > But is there any mechanism for secure setuid in php > as in perl?? > > --VK > > > __________________________________ > Do you Yahoo!? > Yahoo! Search - Find what you�re looking for faster > http://search.yahoo.com > > > > ------------------------------ > > Message: 3 > Date: Tue, 9 Mar 2004 23:16:52 +0530 > From: Raj Mathur <[EMAIL PROTECTED]> > Subject: Re: [ilugd] add users > To: The Linux-Delhi mailing list > <[EMAIL PROTECTED]> > Message-ID: > <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii > > >>>>> "Vivek" == vivek khurana > <[EMAIL PROTECTED]> writes: > > Vivek> Hi! Is it possible to add users without > becoming root?? > > No. > > Vivek> In continuation to above question is it > possible to do the > Vivek> same from php?? > > Only if you're root. > > And if you become root with a PHP script you're in > deep trouble > anyway. > > Oh wait! If you use PHP you're in deep trouble > anyway :) > > -- Raju > -- > Raj Mathur [EMAIL PROTECTED] > http://kandalaya.org/ > GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF > CC68 D17F > It is the mind that moves > > > > ------------------------------ > > Message: 4 > Date: Tue, 9 Mar 2004 11:15:39 -0800 (PST) > From: vivek khurana <[EMAIL PROTECTED]> > Subject: Re: [ilugd] add users > To: The Linux-Delhi mailing list > <[EMAIL PROTECTED]> > Message-ID: > <[EMAIL PROTECTED]> > Content-Type: text/plain; charset=us-ascii > > > --- Raj Mathur <[EMAIL PROTECTED]> wrote: > > > > Oh wait! If you use PHP you're in deep trouble > > anyway :) > I know this i was just exploring a weird idea. > Blame > my insomia for such questions. BTW any pointer to > any > ready made perl script for adding system users. i > just > want to cross check it with a perl script i had > written(security concern) > === message truncated === __________________________________ Do you Yahoo!? Yahoo! Search - Find what you�re looking for faster http://search.yahoo.com _______________________________________________ ilugd mailinglist -- [EMAIL PROTECTED] http://frodo.hserus.net/mailman/listinfo/ilugd Archives at: http://news.gmane.org/gmane.user-groups.linux.delhi http://www.mail-archive.com/[EMAIL PROTECTED]/
