Is there anyway to configure Avalon (at least the branch we're using) so
that it doesn't expose to all IP addresses the "die!" command? Before I
realized this just now, someone could telnet into port 4554 on my mail
server machine, type die!, and the server dies. Fortunately I was on an OS
where I could restrict something like this, but this is a huge hole.
Unless there's a way to configure this, I'd like to patch the Avalon branch
we're on to only process connections that are from the local machine... I
just don't think we can allow the 1.2 release to go out like this. Any
strong comments against?
Serge Knystautas
Loki Technologies
http://www.lokitech.com/
------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives: <http://www.mail-archive.com/james%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
