Nick, Thanks for this update - we'll be sending out a general warning to our channel; and potentially working in some form of security feature for the verify_install web based version (hrm....)
Charles Daminato OpenSRS Product Manager Tucows Inc. - [EMAIL PROTECTED] > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On > Behalf Of Nick Powers > Sent: November 25, 2001 11:07 PM > To: [EMAIL PROTECTED] > Subject: /cgi-bn/verify_install.cgi > > > I was looking through my web logs and noticed that there were several > attempts to load my /cgi-bin/verify_install.cgi... I had removed > this after > getting the system going. After seeing that I wondered if others were > leaving it. I check a couple of the prominent OpenSRS registries > and found > they were all running it. I suggest that anyone that is still > running this > remove it at once.. It gives a potential hacker way tooo much INFO.. one > tidbit is the username that you use to log into tucows with. > > Nick > > > _________________________________________________________________ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp >
