FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian Development

 
 
LinkBack Thread Tools
 
Old 02-24-2009, 07:38 PM
Holger Levsen
 
Default Bug#516659: ITP: w3bfukk0r -- scan webservers for hidden?directories (forced browsing)

Hi,

On Dienstag, 24. Februar 2009, Noah Slater wrote:
> > you can loose access to your machine...
> At which point you may as well call it someone else's machine.

I ment loosing/forgetting the passwords or the keys.


regards,
Holger
 
Old 02-24-2009, 08:15 PM
Ron Johnson
 
Default Bug#516659: ITP: w3bfukk0r -- scan webservers for hidden?directories (forced browsing)

On 02/24/2009 02:38 PM, Holger Levsen wrote:

Hi,

On Dienstag, 24. Februar 2009, Noah Slater wrote:

you can loose access to your machine...

At which point you may as well call it someone else's machine.


I ment loosing/forgetting the passwords


Rescue disk!


or the keys.


You're hosed anyway...

--
Ron Johnson, Jr.
Jefferson LA USA

The feeling of disgust at seeing a human female in a Relationship
with a chimp male is Homininphobia, and you should be ashamed of
yourself.


--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 
Old 02-25-2009, 12:00 AM
Nico Golde
 
Default Bug#516659: ITP: w3bfukk0r -- scan webservers for hidden?directories (forced browsing)

Hi,
* Noah Slater <nslater@tumbolia.org> [2009-02-25 01:32]:
> On Tue, Feb 24, 2009 at 09:17:35PM +0100, Holger Levsen wrote:
> > > (As Noah Slater pointed out, it's hard to lose a directory on your
> > > own machine...)
> >
> > you can loose access to your machine...
>
> At which point you may as well call it someone else's machine.

There is a difference from using a root account on a shared
hosting system to detect weaknesses or to use the limited
abilities an attacker has from a pentesting standpoint.

Cheers
Nico
--
Nico Golde - http://www.ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
 

Thread Tools




All times are GMT. The time now is 09:27 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org