[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnumed-devel] reborn

From: Sebastian Hilbert
Subject: Re: [Gnumed-devel] reborn
Date: Mon, 29 Nov 2004 16:04:48 +0100
User-agent: KMail/1.7.1

On Monday 29 November 2004 08:27, David Grant wrote:
Today ran an article on CCC (chaos computer club) having been 
hacked via twiki by some spanisch hackers. CCC has a reputation for being 
pretty smart guys.

This hack was possible because of an unknown twiki exploit.

> Horst,
> The latest twiki has the hole patched.  There are patches for all old
> version of twiki as well.  I just upgraded to the newest version and it
> looks nicer, has many new features, and has email notification when
> topics change, using a cron job.
> (login as
> guest).
> twiki has been around for a long time and is more likely to have less
> holes than something which is newer.  It has fairly active development
> which is a good thing for features as well as security, and it has a
> good reputation in general.  I feel really bad for TWiki, Horst, and
> gnumed that this happened because otherwise it is a good free piece of
> software.  (BTW, was it confirmed that TWiki was the source of the
> problem?)
> David
> Horst Herb wrote:
> >The substitute is up and running.
> >160 GB hdd, 1 GB RAM, 100MBit network, redundant power supply.
> >AIDE installed and configured, only a minimum of services running, no root
> >users but me. Apache processes running as www-data.
> >I installed the syscp administration suite
> >(, so we can set up virtual domains
> > and subdomains very easily as needed, and these can be administrated by
> > whomever without compromising the system.
> >
> >I am still cautious about re-installing TWiki.
> >
> >Would you be happy if I'd just set up TikiWiki in it's simplest
> > incarnation (see for an example what it looks like
> > in a more complex incarnation)?
> >
> >Horst
> >
> >
> >_______________________________________________
> >Gnumed-devel mailing list
> >address@hidden
> >

Sebastian Hilbert 
Leipzig / Germany
[]  -> PGP welcome, HTML ->/dev/null
ICQ: 86 07 67 86   -> No files, no URL's
VoIP: callto://address@hidden
My OS: Suse Linux. Geek by Nature, Linux by Choice

reply via email to

[Prev in Thread] Current Thread [Next in Thread]