Stories
Slash Boxes
Comments

NOTE: use Perl; is on undef hiatus. You can read content, but you can't post it. More info will be forthcoming forthcomingly.

use Perl

All the Perl that's Practical to Extract and Report

Secunia security vulnerability reports More | Login | Reply

The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Without JavaScript enabled, you might want to use the classic discussion system instead. If you login, you can remember this preference.

Huh? (Score:2)

by Ovid (2709)

That's interesting. The "macro admin security fix" is something I don't understand, but the first two should be no brainers. Why the heck can't they figure that out for themselves? I do understand your reluctance to get specific about "here's how you attack unpatched versions of this software."
- Re:Huh? (Score:1)
  
  by Beatnik (493) on 2007.01.03 9:39 (#52554) Homepage Journal
  
  Actually, the items on that list are just copied from my Changelog. The first fix is basically to prevent people from creating a link like http://site.com/admin/delete?name=page.. but then again, they can still do a form with POST and have a javascript link to submit it.. *ARGH*
  
  The second one is just applying some best practices. Adding an extra lock to the already locked door.
  
  Third one is uhm.. mmm will have to look up what I meant by that tho :)
  
  Recommended action would be to upgrade.. obviously but nothing that I categorize as critical.
  
  Reply to This
  
  Parent

Get More Comments

Stories, comments, journals, and other submissions on use Perl; are Copyright 1998-2006, their respective owners.