Full Disclosure mailing list archives

Re: Temporary Files and Web Sites (swp, ~, etc)

From: Nicob <nicob () nicob net>
Date: Thu, 12 Aug 2004 12:08:05 +0200

Le jeu 12/08/2004 à 08:45, bugtraq () beyondsecurity com a écrit :

There isn't much you can do beside:
1) Avoid leaving these files behind
2) Make rules in Apache/whatever to block access to .swp, ~, etc files.


The babelweb scanner [1] is already looking for backup files under the
webroot. Tested extensions : '.old', '.bak', '~', '.orig', '.backup',
'.bad'


[1] : http://www.hsc.fr/ressources/outils/babelweb/download/README
-- 
Nicob <nicob () nicob net>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Temporary Files and Web Sites (swp, ~, etc) bugtraq (Aug 12)
- Re: Temporary Files and Web Sites (swp, ~, etc) Spiro Trikaliotis (Aug 12)
- Re: Temporary Files and Web Sites (swp, ~, etc) Nicob (Aug 12)
- Re: Temporary Files and Web Sites (swp, ~, etc) michael williamson (Aug 12)
- RE: Temporary Files and Web Sites (swp, ~, etc) Aditya, ALD [Aditya Lalit Deshmukh] (Aug 12)