[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Cobalt Cube Webmail directory traversal (fwd)

Subject: Re: [cobalt-security] Cobalt Cube Webmail directory traversal (fwd)
From: Gossi The Dog <gossi@xxxxxxxxxxxxxx>
Date: Fri, 6 Jul 2001 17:16:59 +0100 (BST)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Fri, 6 Jul 2001, shimi wrote:

<snip>

> And in any case I am still correct... if a webserver has a server root, in
> no case the webserver shall send out a page on a directory upper than it's
> server root. That's only my opinion, though... (chroot was made for
> limiting software to the exact same thing)

Apache ships with chroot support - Cobalt don't use it by default.

References:
- Re: [cobalt-security] Cobalt Cube Webmail directory traversal (fwd)
  - From: shimi

Prev by Date: RE: [cobalt-security] UDP Scans
Next by Date: RE: [cobalt-security] UDP Scans
Previous by thread: Re: [cobalt-security] Cobalt Cube Webmail directory traversal (fwd)
Next by thread: Re: [cobalt-security] Cobalt Cube Webmail directory traversal (fwd)

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index