Hi,
you might still worry that somebody with a sniffer running on your network
might just pick up the username and password of the person you are
adding through the user interface. No problem. If you want to
add SSL to your Webmin, you'll need a little perl module besides your
already installed OpenSSL. This is where you get it...
ftp://ftp.cpan.org/pub/CPAN/modules/by-module/Net
When I picked mine up, I got version "1.05" which means grabbing
file Net_SSLeay.pm-1.05.tar.gz.
>> Can you please be specific about what other vulnerabilities
>>it exposes the web-server to ?
>>Indialinks got _ h4x0red_ ?? Huh.. have'nt heard of that
acryonym so far.
>> Maybe it can be added to our list. :-)
Regards
Kaushik
-----Original Message-----
From: Suresh Ramasubramanian <[EMAIL PROTECTED]>
To: SEN <[EMAIL PROTECTED]>
>Alabanza is a webhosting company which provides dirt cheap webhosting and
>colocated servers. Hazaar Indian "web dev" companies such as Indialinks
>were their customers, till Indialinks got h4x0red by Pakistani script
>kiddies and over 600 websites had their index.html replaced with
>anti-india stuff, and all indian ip blocks were blocked from telnet / ssh
>:)
>>Anyway, my point was not about one specific co - my point was that such
>web interfaces are magnets for script kiddies and are not all that hard to
>crack.
-----------------------------------------------------------------------
The LIH mailing list archives are available at:
http://lists.linux-india.org/cgi-bin/wilma/linux-india-help
