Re: [Gnumed-devel] hherb.com reborn

gnumed-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnumed-devel] hherb.com reborn

From:	Sebastian Hilbert
Subject:	Re: [Gnumed-devel] hherb.com reborn
Date:	Mon, 29 Nov 2004 16:04:48 +0100
User-agent:	KMail/1.7.1

On Monday 29 November 2004 08:27, David Grant wrote:
Today www.heise.de ran an article on CCC (chaos computer club) having been 
hacked via twiki by some spanisch hackers. CCC has a reputation for being 
pretty smart guys.

https://www.ccc.de/updates/2004/camp-server-hack?language=en

This hack was possible because of an unknown twiki exploit.

> Horst,
>
> The latest twiki has the hole patched.  There are patches for all old
> version of twiki as well.  I just upgraded to the newest version and it
> looks nicer, has many new features, and has email notification when
> topics change, using a cron job.
> http://www.davidgrant.ca:81/twiki/bin/view/Sandbox/WebHome (login as
> guest).
>
> twiki has been around for a long time and is more likely to have less
> holes than something which is newer.  It has fairly active development
> which is a good thing for features as well as security, and it has a
> good reputation in general.  I feel really bad for TWiki, Horst, and
> gnumed that this happened because otherwise it is a good free piece of
> software.  (BTW, was it confirmed that TWiki was the source of the
> problem?)
>
> David
>
> Horst Herb wrote:
> >The hherb.com substitute is up and running.
> >160 GB hdd, 1 GB RAM, 100MBit network, redundant power supply.
> >AIDE installed and configured, only a minimum of services running, no root
> >users but me. Apache processes running as www-data.
> >I installed the syscp administration suite
> >(http://www.syscp.de/wiki/EnAboutSysCP), so we can set up virtual domains
> > and subdomains very easily as needed, and these can be administrated by
> > whomever without compromising the system.
> >
> >I am still cautious about re-installing TWiki.
> >
> >Would you be happy if I'd just set up TikiWiki in it's simplest
> > incarnation (see http://hherb.com/gpcg for an example what it looks like
> > in a more complex incarnation)?
> >
> >Horst
> >
> >
> >_______________________________________________
> >Gnumed-devel mailing list
> >address@hidden
> >http://lists.gnu.org/mailman/listinfo/gnumed-devel

-- 
Sebastian Hilbert 
Leipzig / Germany
[www.openmed.org]  -> PGP welcome, HTML ->/dev/null
ICQ: 86 07 67 86   -> No files, no URL's
VoIP: callto://address@hidden
My OS: Suse Linux. Geek by Nature, Linux by Choice

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Gnumed-devel] hherb.com reborn, (continued)
- Re: [Gnumed-devel] hherb.com reborn, Karsten Hilbert, 2004/11/28
  - Re: [Gnumed-devel] hherb.com reborn, J Busser, 2004/11/28
- Re: [Gnumed-devel] hherb.com reborn, J Busser, 2004/11/28
  - [Gnumed-devel] Re: hherb.com reborn, Andreas Tille, 2004/11/29
    - [Gnumed-devel] Re: hherb.com reborn, J Busser, 2004/11/29
    - Re: [Gnumed-devel] Re: hherb.com reborn, Karsten Hilbert, 2004/11/29
  - Re: [Gnumed-devel] hherb.com reborn, Karsten Hilbert, 2004/11/29
- Re: [Gnumed-devel] hherb.com reborn, David Grant, 2004/11/29
  - [Gnumed-devel] Re: hherb.com reborn, Andreas Tille, 2004/11/29
    - Re: [Gnumed-devel] Re: hherb.com reborn, David Grant, 2004/11/30
  - Re: [Gnumed-devel] hherb.com reborn, Sebastian Hilbert <=
    - Re: [Gnumed-devel] hherb.com reborn, David Grant, 2004/11/30
  - Re: [Gnumed-devel] hherb.com reborn, Karsten Hilbert, 2004/11/29

Prev by Date: [Gnumed-devel] Re: hherb.com reborn
Next by Date: Re: [Gnumed-devel] hherb.com and more under fire
Previous by thread: Re: [Gnumed-devel] Re: hherb.com reborn
Next by thread: Re: [Gnumed-devel] hherb.com reborn
Index(es):
- Date
- Thread