https://bugzilla.wikimedia.org/show_bug.cgi?id=20594
--- Comment #8 from Roan Kattouw <[email protected]> 2009-09-15 10:15:08 UTC --- (In reply to comment #7) > I am totally satisfied with Platonides. Displaying the Database is very very > useful for attacker. With it you are telling that "BOSS Come this is the Key > Combination to Open my Locker". :)) > > Kindly let me know if other potential information in being leaked. > It's not that much of a vulnerability, really. I agree that we shouldn't expose it if not necessary, but it's not like the DB name is the attacker's magic key to everything; you still need the DB username+password and a way to connect to the DB server before you can get anywhere. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
