[Dxspider-support] Security problem
iz5fsa at tele2.it
iz5fsa at tele2.it
Fri Apr 1 09:28:58 BST 2005
I have a linuxnode that connect the spider via telnet comnmand like this:
telnet localhost 8000
and when I connect myself (the sysop that have a password) I gain the access without the password as a normal user. I think it works fine... What I lose?
>
> Da: "Dirk Koopman" <djk at tobit.co.uk>
> Data: 2005/04/01 ven AM 09:02:29 GMT+02:00
> A: "The DXSpider Support list" <dxspider-support at dxcluster.org>
> Oggetto: RE: [Dxspider-support] Security problem
>
> > Can you add a password to the sysops call?, that would stop someone
> > logging
> > in and causing havoc.
>
> I dunno about havoc. Anybody logging in via telnet, not from localhost,
> regardless of callsign, without a password will be a "normal" user. This
> has always been the case.
>
> I am not currently in a position to do any development work so take the
> suggestion made elsewhere and set the bumpexisting variable to 0 and you
> will get the old behaviour.
>
> Dirk G1TLH
>
> _______________________________________________
> Dxspider-support mailing list
> Dxspider-support at dxcluster.org
> http://www.tobit.co.uk/mailman/listinfo/dxspider-support
>
-------------------------------------------------
WebMail Tele2 http://www.tele2.it
-------------------------------------------------
More information about the Dxspider-support
mailing list