Impressive. No, really. Not only do they manage to deface cvsweb, but if you use the standard url, everything goes back to normal, meaning their exploit is self-hiding. Plus the files aren't modified, for augmented stealthiness (we're talking ninja-level stealthiness here).
Sorry, I can't help you on this, my paladin's only lvl 15, this troll's at least lvl 57. I'll fake death and let it get bored On Thu, Aug 21, 2008 at 11:29 PM, ropers <[EMAIL PROTECTED]> wrote: > FYI: > Some gloating redditors are currently trolling OpenBSD. See here for > the details: > http://www.reddit.com/r/programming/comments/6xelo/only_two_remote_holes_in_the_default_install_in/ > > I feel bad about spreading this nonsense further, but I felt I maybe > should give everybody here a heads-up. > > --ropers > > -- Vincent "Dermiste" Gross "So, the essence of XML is this: the problem it solves is not hard, and it does not solve the problem well." -- Jerome Simeon & Phil Wadler