|
|
Posted by Stewart Gordon on 11/29/05 13:14
Tina - AxisHOST, Inc. wrote:
> "Kim André Akerø" <kimandre@NOSPAMbetadome.com> wrote in message
> news:3upb4uF12mbijU1@individual.net...
>> Stewart Gordon wrote:
<snip>
>>> Why is this? Are you still working on getting the edit facility to
>>> work properly, or what?
>> According to the Internet Wayback Machine, the site hasn't been updated
>> since January 2003,
That's because it was stuck in read-only mode for quite a long time
before it finally went down altogether.
> The reason for this is because when we were hosting it, we discovered that
> the script used to power the site was insecure. It was allowing anyone,
> with malicious intent, to run code that could bring down the server. Patch
> the script and you should be fine.
I know about cross-site scripting, but don't see how that can be used to
bring down a server. Is there some other vulnerability I haven't heard of?
Stewart.
--
-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GCS/M d- s:- C++@ a->--- UB@ P+ L E@ W++@ N+++ o K-@ w++@ O? M V? PS-
PE- Y? PGP- t- 5? X? R b DI? D G e++>++++ h-- r-- !y
------END GEEK CODE BLOCK------
My e-mail is valid but not my primary mailbox. Please keep replies on
the 'group where everyone may benefit.
Navigation:
[Reply to this message]
|