Re:mac hack

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 13055
interpreted = N
texte = We actually changed SiteEdit - not repaired it. The change is to handle the fear of security not the reality. The hole discovered had to do with Lasso being able to display any file on the drive... SiteEdit just happened to be the file that this person went after, but imaging those people running Lasso commerce sites today with this hole known and all those credit card numbers sitting on their drive.... >I saw that Lasso had the bad luck of being the cgi responsible for a mac >hack, and that PCS has had to repair siteedit for having the same hole. >What is the status of webcat? Although I know little of the actual >techinique used, I know it had to do with the serving of the omega files, >which webcat will not serve. So I assume we are completely safe! > > >Robert Minor > >__________________________________________________________ >CyberMill Website Designers & Publishers >8616 Joseph Ave >St. Louis, MO 63144 >voice 314-962-4024 >email: webmaster@cybermill.com >http://www.cybermill.com/ >__________________________________________________________ >We are not responsible for any misspelling or misinformation >please check with your internet provider for defects. Jay Van Vark ****************************** Pacific Coast Software | Commerce (WebCatalog) 11770 Bernardo Plaza Court | Hosting & Design Suite 453 | http://www.smithmicro.com San Diego, CA 92128 ****************************** 619.675.1106 Associated Messages, from the most recent to the oldest:

    
  1. Re:mac hack (Jay Van Vark 1997)
We actually changed SiteEdit - not repaired it. The change is to handle the fear of security not the reality. The hole discovered had to do with Lasso being able to display any file on the drive... SiteEdit just happened to be the file that this person went after, but imaging those people running Lasso commerce sites today with this hole known and all those credit card numbers sitting on their drive.... >I saw that Lasso had the bad luck of being the cgi responsible for a mac >hack, and that PCS has had to repair siteedit for having the same hole. >What is the status of webcat? Although I know little of the actual >techinique used, I know it had to do with the serving of the omega files, >which webcat will not serve. So I assume we are completely safe! > > >Robert Minor > >__________________________________________________________ >CyberMill Website Designers & Publishers >8616 Joseph Ave >St. Louis, MO 63144 >voice 314-962-4024 >email: webmaster@cybermill.com >http://www.cybermill.com/ >__________________________________________________________ >We are not responsible for any misspelling or misinformation >please check with your internet provider for defects. Jay Van Vark ****************************** Pacific Coast Software | Commerce (WebCatalog) 11770 Bernardo Plaza Court | Hosting & Design Suite 453 | http://www.smithmicro.com San Diego, CA 92128 ****************************** 619.675.1106 Jay Van Vark

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

What Country (2004) Moving files from one server to another... (2001) [ShowIf] if the varieable exists (1998) WC TableGrinder (1997) [applescript] (2001) Navigator 4.01 (1997) notification solutions (1997) ReturnRaw context (1997) &fieldsdir=ra truely random?? (2000) 2.1b3 --> way slow (1997) Giving out error pages (1997) bannerads example idiot (1997) WebDNA Codes in Secure Mode (1997) WebCat2 several catalogs? (1997) Search/sort in URL Was: GuestBook example (1997) setting taxable to true (1997) WebSTAR plugin update (2004) OT: Where to turn (2003) $flushcache causes crash (2000) middle (2003)