Apache and home directories (file browser).
Shawn Mitchell
shawnm at iodamedia.net
Fri Feb 20 21:23:28 PST 2004
It's just like any programming language. If you don't dot all of your i's
and cross your 't's, then your open for something here and there.
I'm not saying php-Nuke is bad, just that it's complicated enough, that
chances are something's not double check here and there.
Like any and ALL programming languages, YOU SHOULD NEVER TRUST YOUR INPUT.
Check it, double check it, reverse it, check it again, and still don't trust
it.
my $0.02's worth (or $0.002 in England now)
-----Original Message-----
From: owner-freebsd-isp at freebsd.org
[mailto:owner-freebsd-isp at freebsd.org]On Behalf Of alan
Sent: Friday, February 20, 2004 2:13 PM
To: freebsd-isp at freebsd.org
Subject: Re: Apache and home directories (file browser).
Please be aware that allowing uploads through php is quite insecure. A
lot of php-Nuke hacks have been accomplished that way. google for
security info on uploads through php.
alan
_______________________________________________
freebsd-isp at freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-isp
To unsubscribe, send any mail to "freebsd-isp-unsubscribe at freebsd.org"
More information about the freebsd-isp
mailing list