--
On Thu, 6 Apr 2006 17:14:54 +0200
Adam Grzesko <[EMAIL PROTECTED]> bubbled:
> Czesc Martin,
>
> Thursday, April 6, 2006, 4:58:40 PM, you wrote:
>
> MZ> --
> MZ> On Thu, 6 Apr 2006 16:12:46 +0200
> MZ> Adam Grzesko <[EMAIL PROTECTED]> bubbled:
>
> >> Hi LDuke,
> >>
> >> Thursday, April 6, 2006, 4:01:38 PM, you wrote:
> >> L> --
> >> L> [ Picked text/plain from multipart/alternative ]
> >> L> It's not a serious issue affecting Source servers. If you don't
> >> L> want that ability on your server, then DON'T INSTALL IT on your
> >> L> server.
> >>
> >> Once again I will write this: THIS IS A SERIOUS ISSUE AFFECTING
> >> GAME SERVERS PROVIDERS that run many customer servers per machine.
>
> MZ> Then you are a bad provider if you can't secure your machine
> MZ> against your customers ...
>
> Thanks. That helped a lot. I don't know any other server than CSS
> allowing to execute arbitrary system commands. How would you then
> secure your X machines and Y server instances against this ?
> Would you simply set jail and chroot for each instance of
> game server? I bet you would if you are going to live for another 200
> years, maybe you wouldn't run out of time and out of a disk space.
No, I would write a wrapper that replaces some system commands ;)
--
MyExcuse:
Our ISP is having {switching,routing,SMDS,frame relay} problems
Martin Zwickel <[EMAIL PROTECTED]>
Research & Development
TechnoTrend AG <http://www.technotrend.de>
--
[ signature.asc of type application/pgp-signature deleted ]
--
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please
visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux
