Rockbox.org home
release
dev builds
extras
themes manual
wiki
device status forums
mailing lists
IRC bugs
patches
dev guide



Rockbox mail archive

Subject: Re: List Somewhat Back

Re: List Somewhat Back

From: Jochen Schulz <ml_at_well-adjusted.de>
Date: 2005-09-19

Joseph Jones:
>
> Somebody attacked the wiki through a vulnerability, and my
> understanding is that this also gave them access to other parts of the
> Rockbox infrastructure. Namely, the mailing list.

The tiwki vulnerability enabled everyone to execute shell comands with
the privileges of the www/wiki user. The attacker launched 'rm -rf /'
("Delete everything" in UNIX) and that deleted everything the user was
allowed to delete.

J.

-- 
If I could travel in time I would show my minidisc to the Romans and
become Caesar until the batteries ran out.
[Agree]   [Disagree]
                 <http://www.slowlydownward.com/NODATA/data_enter2.html>

Received on Mon Sep 19 19:54:57 2005

Page was last modified "Jan 10 2012" The Rockbox Crew
aaa