[2149] in linux-security and linux-alert archive
[linux-security] Re: php3 module and security
daemon@ATHENA.MIT.EDU (mat -filid brandy)
Sat May 8 03:17:10 1999
Date: Sat, 8 May 1999 08:57:45 +0200
From: mat -filid brandy <brandy@klammeraffe.org>
To: "Levy Carneiro Jr." <levy@null.net>
Cc: linux-security@redhat.com
In-Reply-To: <Pine.LNX.4.10.9905071912500.2891-100000@slave.fractal.com.br>; from Levy Carneiro Jr. on Fri, May 07, 1999 at 07:19:19PM -0300
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com
Slan,
On Fri, May 07, 1999 at 07:19:19PM -0300, Levy Carneiro Jr. wrote:
> When php3 module is compiled in apache, files in any directory will
> be interpreted by the parser and executed. This is a security breach.
> There is a way to correct this? Any comments?
Read the SAFEMODE part of php3 !!!
Slainte agus saol agat,
-mat-
--
-mat- filid brandy brandy@klammeraffe.org MB210-RIPE
<A HREF="http://www.klammeraffe.org/~brandy/">-mat- brandy</A>
PGP PUBLIC KEY CODE via finger
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null
