Date: Fri, 01 Dec 2000 06:53:48 -0800 From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> To: Jordan Hubbard <jkh@winston.osd.bsdi.com> Cc: The Hermit Hacker <scrappy@hub.org>, Kris Kennaway <kris@FreeBSD.ORG>, Stefano Riva <sriva@gufi.org>, security@FreeBSD.ORG Subject: Re: FreeBSD hacked? Message-ID: <200012011454.eB1EsH747653@cwsys.cwsent.com> In-Reply-To: Your message of "Thu, 30 Nov 2000 11:48:28 PST." <18748.975613708@winston.osd.bsdi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <18748.975613708@winston.osd.bsdi.com>, Jordan Hubbard writes: > > so, for the next few days, there is a possibility that the rest of us are > > as vulnerable? *raised eyebrow* > > Only if you run all of FreeBSD.org's CGI scripts. Do you? :) I think the only CGI script that runs on www.freebsd.org that people might run is cvsweb because its a port in the ports collection. Until we hear otherwise there is the possibility that it might be the culprit. You people should just watch the commits to the www source tree. Eventually you'll see a commit that will fix the problem. Until then you'll have to wait. Regards, Phone: (250)387-8437 Cy Schubert Fax: (250)387-5766 Team Leader, Sun/DEC Team Internet: Cy.Schubert@osg.gov.bc.ca Open Systems Group, ITSD, ISTA Province of BC To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200012011454.eB1EsH747653>