[Dxspider-support] Security problem

iz5fsa at tele2.it iz5fsa at tele2.it
Fri Apr 1 09:28:58 BST 2005


I have a linuxnode that connect the spider via telnet comnmand like this:
telnet localhost 8000
and when I connect myself (the sysop that have a password) I gain the access without the password as a normal user. I think it works fine... What I lose?

> 
> Da: "Dirk Koopman" <djk at tobit.co.uk>
> Data: 2005/04/01 ven AM 09:02:29 GMT+02:00
> A: "The DXSpider Support list" <dxspider-support at dxcluster.org>
> Oggetto: RE: [Dxspider-support] Security problem
> 
> > Can you add a password to the sysops call?, that would stop someone
> > logging
> > in and causing havoc.
> 
> I dunno about havoc. Anybody logging in via telnet, not from localhost,
> regardless of callsign, without a password will be a "normal" user. This
> has always been the case.
> 
> I am not currently in a position to do any development work so take the
> suggestion made elsewhere and set the bumpexisting variable to 0 and you
> will get the old behaviour.
> 
> Dirk G1TLH
> 
> _______________________________________________
> Dxspider-support mailing list
> Dxspider-support at dxcluster.org
> http://www.tobit.co.uk/mailman/listinfo/dxspider-support
> 

-------------------------------------------------
WebMail Tele2 http://www.tele2.it
-------------------------------------------------




More information about the Dxspider-support mailing list