Rockbox.org home
release
dev builds
extras
themes manual
wiki
device status forums
mailing lists
IRC bugs
patches
dev guide



Rockbox mail archive

Subject: Re: List Somewhat Back

Re: List Somewhat Back

From: Dave Wiard <lists_at_wiard.net>
Date: Mon, 19 Sep 2005 11:07:50 -0700

Jochen Schulz wrote:
> Joseph Jones:
>
>>Somebody attacked the wiki through a vulnerability, and my
>>understanding is that this also gave them access to other parts of the
>>Rockbox infrastructure. Namely, the mailing list.
>
>
> The tiwki vulnerability enabled everyone to execute shell comands with
> the privileges of the www/wiki user. The attacker launched 'rm -rf /'
> ("Delete everything" in UNIX) and that deleted everything the user was
> allowed to delete.

Gotta love pricks who attack a site that does nothing more than provide
a sweet, open-source, replacement firmware for jukebox players... I'll
gladly play host to a backup once the main wiki is up and running. I've
got more than enough disk and my download bandwidth is 7 Mbps. I can't
really host a mirror to serve data (sloooow up speed) but I can house
lots of data for indefinite time on a regular basis.

Dave
Received on 2005-09-19

Page template was last modified "Tue Sep 7 00:00:02 2021" The Rockbox Crew -- Privacy Policy