[3567] in WWW Security List Archive
www-security or web-crawlers=bad....
daemon@ATHENA.MIT.EDU (John Q. Public)
Sat Nov 16 15:05:47 1996
Date: Sat, 16 Nov 1996 12:57:11 -0500
From: "John Q. Public" <scwild@ix.netcom.com>
To: www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
Not to sound like the ass in this list, but is "www-security" turning
into: "trivial discussions of common sense for morons 101"? Could we
please kill the alta-vista threads. It's a common sense question, so
use some sense. Leaving world readable files where people (crawlers &
harvesters) can easily find them is not a security issue, it's an issue
of stupidity.
Can we please kill this thread and deal with some real security issues?
Maybe we can discuss the huge hole that test-cgi is causing... I
haven't seen a word about it in this list... Er, maybe it's been talked
about and lost in the discussion re: "bad, bad, altavista".
If the owner of this list chooses not to kill these threads, please kill
my subscription to this list, or start another one that is a bit more
moderated.
John Q. Public
P.S. There's always that neato private reply thingy if you wanna flame
about altavista. Please stop spamming this list.
