[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] HTTP/FTP Proxy in a CGI Script (Banned)

Subject: [cobalt-security] HTTP/FTP Proxy in a CGI Script (Banned)
From: "Nicolae" <nicolaep@xxxxxxxxxxxxxxxxxx>
Date: Mon, 22 Apr 2002 16:59:27 -0700
Organization: EnigmaBiz.Com
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

I awhile back few years installed a script to test out this
so-call 'browse' anonymous onto a hosting site and still have it
as of this day.  I forgot about it and it's been sitting in the 
directory for awhile.  The account was suspended and than brought
back up.

I was surprised that finally now they did it while I had that in
for over 12 or so month.  I than d/led the latest version on my RAQ

CGIProxy 1.5.1
http://www.jmarshall.com/tools/cgiproxy/
HTTP/FTP Proxy in a CGI Script

I understand giving access to anyone using the script to bounce
off your servers.  I had 0% hits on the script which not in use.

I tried installing to the RAQ and no success.  Security issue.
I am not going to waste time troubleshooting why and how.

Anyone using this or any use of it?

I also noticed that the new proxy program can do allot more by editing
1% of the source code.

Per say, I don't mind getting rid of all the *.click ads and pop-ups
and such.

--
Nicolae

Prev by Date: Re: [cobalt-security] Re: SSI Vuln on cobalt
Next by Date: Re: [cobalt-security] Re: SSI Vuln on cobalt
Previous by thread: RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail forwarding
Next by thread: [cobalt-security] Re: RE: SSI Vuln on cobalt

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index