• Welcome to Valhalla Legends Archive.
 

Attn: Adron/Grok (Re: CVS security hole)

Started by Yoni, March 27, 2004, 06:28 AM

Previous topic - Next topic

Yoni

Hmm, Adron thought only the directory listings were available before the hole was fixed, but I think one or more source files may have been compromised after all...

Are there any IIS or CVS logs from before changing the ACLs?

Adron

Well, the CVS access doesn't exactly log much. There's IP and file, not user names.

I haven't received IP info on from everyone I know is accessing the CVS. I've matched up some, but there's a few unknowns remaining. You obviously don't have to post your ip for everyone to see, just message me so I can strike you off the log files.

Denial

#2
Hrm doesnt it suck this was to late?

"just message me so I can strike you off the log files. "

ok ill message you
Actus non facit reum nisi mens sit rea

Hazard


"Courage is being scared to death - but saddling up anyway." --John Wayne