[thelist] BBS options

John Handelaar john.handelaar at channelfly.com
Tue Mar 21 14:14:42 2000

Previous message: [thelist] BBS options
Next message: [thelist] My *****locked****** Outlook.
Return to the message index sorted by: [ date ] [ thread ] [ subject ] [ author ]

> From: thelist-admin@lists.evolt.org
> [mailto:thelist-admin@lists.evolt.org]On Behalf Of Jen Worden
> Sent: 21 March 2000 13:52
> To: thelist@lists.evolt.org; thelist@lists.evolt.org
> Subject: RE: [thelist] BBS options
> 
> At 11:07 AM 3/20/00 -0000, John Handelaar wrote:
> >I'm quite a big fan of UBB as well - but it's wide open to
> >security breaches if you don't configure it properly.
> 
> John, could you be more specific? What kind of security breaches? How to
> configure properly? I'd love to hear more or point the way. Thanks!

UBB stores all its data in a specific file or three.  That file
'ships' with the same name on every UBB installation.  So if
your UBB directory is 'below' your web server root, I can
grab passwords, a/c details, everything with a web browser.

The UBB site has more details, as (I imagine) would the
comp.risks archive.

----------------------------------------------------------
john.handelaar@channelfly.com
T +44 20 7482 1155  F +44 20 7813 1155  www.channelfly.com
234 Royal College Street, London  NW1 9LT   United Kingdom
----------------------------------------------------------

This message is confidential, is intended for the named 
recipients only and may contain legally privileged 
information.  If you receive this message in error please 
contact the sender immediately.   (c) 2000 channelfly.com

Previous message: [thelist] BBS options
Next message: [thelist] My *****locked****** Outlook.
Return to the message index sorted by: [ date ] [ thread ] [ subject ] [ author ]