Re: [Full-Disclosure] Vulnerability in sourceforge.net

[Anders B Jansson <hdw@xxxxxxxxxxx>]

nobody:*:32767:32767:Unprivileged user:/nonexistent:/sbin/nologin


Todd Towles wrote:
> Does OpenBSD do that?
>
> -----Original Message-----
> From: full-disclosure-admin@xxxxxxxxxxxxxxxx
> [mailto:full-disclosure-admin@xxxxxxxxxxxxxxxx] On Behalf Of Gregory A.
> Gilliss
> Sent: Thursday, July 22, 2004 3:31 PM
> To: full-disclosure@xxxxxxxxxxxxxxxx
> Subject: Re: [Full-Disclosure] Vulnerability in sourceforge.net
>
> Really...FreeBSD comes with user nobody set to /sbin/nologin out of the
> box. Maybe they should have chosen a better host OS?
>
> G
>
> On or about 2004.07.22 07:49:53 +0000, Todd Towles
> (toddtowles@xxxxxxxxxxxxxxx) said:
>
>
> > Sounds like they should have configured that page a bit different...made
>
> it
>
> > run under a little less access...or said I say..it is a mis-configuration.
> > =)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html