security hole for newbies...I think
Brought to you by:
cheeseman
Menu
▾
▴
Hi,
First, thank for your job and thanks to share it.
When I configure the script I saw that "TRUSTEDHOSTx" contain valid Internet address (look with "whois" command).
If I trusted this script without looking it, or if I was a newbie, I would authorise 4 unknown computers to access my computer.
Is it voluntary or did you make a mistake or anything else?
Thanks for your answer.
Grald Pineau.
Hiya Gerald,
Not a nasty hole that I left in there on purpose or anything as exciting as that I'm afraid. Those IPs you see are irc servers if I recall correctly, and I trust those hosts because they basically require to see port 113, and that was an easy way to do it.
Unfortunetly I must of left them in the script when I uploaded them.... oops! So if anyone wants to attack my systems.. spoof those IP addresses!
Thanks for pointing that out, when I get time I'll change it..
Dave
Hiya Gerald,
Not a nasty hole that I left in there on purpose or anything as exciting as that I'm afraid. Those IPs you see are irc servers if I recall correctly, and I trust those hosts because they basically require to see port 113, and that was an easy way to do it.
Unfortunetly I must of left them in the script when I uploaded them.... oops! So if anyone wants to attack my systems.. spoof those IP addresses!
Thanks for pointing that out, when I get time I'll change it..
Dave