Return to BSD News archive
Newsgroups: comp.os.386bsd.questions Path: sserve!newshost.anu.edu.au!munnari.oz.au!news.Hawaii.Edu!ames!agate!usenet.ins.cwru.edu!magnus.acs.ohio-state.edu!csn!boulder.parcplace.com!imp From: imp@boulder.parcplace.com (Warner Losh) Subject: Re: Challenge Message-ID: <C9x6rp.28L@boulder.parcplace.com> Keywords: cron Sender: news@boulder.parcplace.com Organization: ParcPlace Boulder References: <21hurt$5ko@terminator.rs.itd.umich.edu> <21i0bh$nn@Germany.EU.net> <1993Jul9.204659.1642@intellistor.com> Date: Fri, 9 Jul 1993 23:04:36 GMT Lines: 15 In article <1993Jul9.204659.1642@intellistor.com> cwolff@intellistor.com (Clint Wolff) writes: >Take a quick look at your system, and see how many of your company proprietary >files are in directories that are world read/execute... ALL of these files >are accessible to tftp... This is bad... Most companies don't have their source trees under /tftpboot, which is where modern tftp servers chroot() to before giving out files. Or have I missed something here? Wraner -- Warner Losh imp@boulder.parcplace.COM ParcPlace Boulder I've almost finished my brute force solution to subtlety.