Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Draft for hosted cgi

From: Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar>
Date: Wed, 24 May 2006 09:49:43 -0300
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

KarMax wrote:

Allow an unprivileged user to use raw sockets is a BAD idea.


Allow an unprivileged user to execute commands as root is worse, I believe.

Probably some kernel-level security would be nice, as an in-between option.

- --
Arturo "Buanzo" Busleiman - VPN Mail Project - http://vpnmail.buanzo.com.ar
Consultor en Seguridad Informatica - http://www.buanzo.com.ar
My Linux and Security Blog at http://linux-consulting.buanzo.com.ar/

Romper un sistema de seguridad los acerca tanto a ser hackers como
encender autos puenteando los convierte en ingenieros automotrices.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEdFZnAlpOsGhXcE0RAjZ8AJ4mdzJZp+yzEHy/UQH9JajhSxuStwCeI73J
EtaSl9h7ToPoh97kbvLzUEI=
=riI+
-----END PGP SIGNATURE-----


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Previous By Date Next
Previous By Thread Next

Current thread: