Re: WebCatalog security on NT
This WebDNA talk-list message is from 2000
It keeps the original formatting.
numero = 27189
interpreted = N
texte = >>So I assume that since people *do* host sites on NT, they still must>>have devised a method of doing that... What are the prevention>>steps that could be taken do have a somewhat secure hosting.>>Try subscribing to the ntbugtraq list at: http://www.ntbugtraq.com/>>You can spend a good amount of time studying and securing your NT server>(or hiring an expert -- our recommendation), but you're at the mercy of>the software you run. I think the CD-Universe security hole was due to a>server running an older version of a package with a known bug. The key>is keep your software current, your security measures on high, and watch>the postings from M.S. and software vendors on security alerts.>>Last year, some on exploited a buffer overrun in a standard NT service>that let them pipe in a program to re-map port 80 to the command line.>This basically gave you access to the machine, at C:\ prompt level>through port 80. Firewalls aren't a big help here !!!Who cares?Sorry to be so blunt, but this is *not* the place for a general discussion of NT security issues -- and editing the original post to make it look like a general NT security question is not a valid excuse for posting information unrelated to WebCatalog and the WebDNA language ... :(Please folks, let's remember that this is WebDNA-Talk ... and try to keep this list focused on WebCatalog and Typhoon and the WebDNA language -- or at the very least, let's keep it related to SmithMicro and their software.================================Kenneth Grome, WebDNA Consultant808-737-6499, http://webdna.net================================-------------------------------------------------------------Brought to you by CommuniGate Pro - The Buzz Word Compliant Messaging Server.To end your Mail problems go to
.This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to
Associated Messages, from the most recent to the oldest:
>>So I assume that since people *do* host sites on NT, they still must>>have devised a method of doing that... What are the prevention>>steps that could be taken do have a somewhat secure hosting.>>Try subscribing to the ntbugtraq list at: http://www.ntbugtraq.com/>>You can spend a good amount of time studying and securing your NT server>(or hiring an expert -- our recommendation), but you're at the mercy of>the software you run. I think the CD-Universe security hole was due to a>server running an older version of a package with a known bug. The key>is keep your software current, your security measures on high, and watch>the postings from M.S. and software vendors on security alerts.>>Last year, some on exploited a buffer overrun in a standard NT service>that let them pipe in a program to re-map port 80 to the command line.>This basically gave you access to the machine, at C:\ prompt level>through port 80. Firewalls aren't a big help here !!!Who cares?Sorry to be so blunt, but this is *not* the place for a general discussion of NT security issues -- and editing the original post to make it look like a general NT security question is not a valid excuse for posting information unrelated to WebCatalog and the WebDNA language ... :(Please folks, let's remember that this is WebDNA-Talk ... and try to keep this list focused on WebCatalog and Typhoon and the WebDNA language -- or at the very least, let's keep it related to SmithMicro and their software.================================Kenneth Grome, WebDNA Consultant808-737-6499, http://webdna.net================================-------------------------------------------------------------Brought to you by CommuniGate Pro - The Buzz Word Compliant Messaging Server.To end your Mail problems go to .This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to
Kenneth Grome
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
syntax question, not in online refernce (1997)
WebMerchant 3.0? (1998)
European Convention (2004)
Can [writefile] files be served thru webcat? (2000)
intel mac (2006)
policies, slightly OT (2004)
New Calendar Snippet (1998)
WebCat2b12 CGI Mac - [shownext] problem (1997)
Date search bug (1998)
pop-up list to select template (1999)
hmmm (2006)
credit card (1997)
group searching problem (2002)
WebStar quitting since upgrading to WC4 (2000)
Problems with [Applescript] (1997)
RePost: NAT and the CART (1999)
Multiple catalog databases and showcart (1997)
can WC render sites out? (1997)
Showif Context combined with Search (1997)
WebCat2 - Getting to the browser's username/password data (1997)