RE: [hlds_linux] Re: [hlds_linux] serious security issue on CSS servers, exposed system command
have you ever heard of chroot environments?! THATS your solution. also: until mattie has not fixed this ban it from your servers. it should not too hard to force this. Simon > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Adam Grzesko > Sent: Thursday, April 06, 2006 4:11 PM > To: [EMAIL PROTECTED] > Subject: Re: [hlds_linux] Re: [hlds_linux] serious security > issue on CSS servers, exposed system command > > Hi sirtom, > > Thursday, April 6, 2006, 3:45:15 PM, you wrote: > > sed> You just don't need to install this addon... > sed> So Valve doesn't need to fix "it"... > > How am I supposed to protect the machine that handles many > customer servers from executing arbitrary commands ? > Can you tell me that ? Or how am I supposed to tell them what > plugins to install and what plugins not to install ? > > regards, > Adam Grzesko > [EMAIL PROTECTED] > > > ___ > To unsubscribe, edit your list preferences, or view the list > archives, please visit: > http://list.valvesoftware.com/mailman/listinfo/hlds_linux > ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
Re: [hlds_linux] Re: [hlds_linux] serious security issue on CSS servers, exposed system command
By applying appropriate OS level security such as chroot etc. Adam Grzesko wrote: Hi sirtom, Thursday, April 6, 2006, 3:45:15 PM, you wrote: sed> You just don't need to install this addon... sed> So Valve doesn't need to fix "it"... How am I supposed to protect the machine that handles many customer servers from executing arbitrary commands ? Can you tell me that ? Or how am I supposed to tell them what plugins to install and what plugins not to install ? regards, Adam Grzesko [EMAIL PROTECTED] ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux -- With regards, Say_Ten This e.mail is private and confidential between Multiplay (UK) Ltd. and the person or entity to whom it is addressed. In the event of misdirection, the recipient is prohibited from using, copying, printing or otherwise disseminating it or any information contained in it. In the event of misdirection, illegible or incomplete transmission please telephone (023) 8024 3137 or return the E.mail to [EMAIL PROTECTED] ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
Re: [hlds_linux] Re: [hlds_linux] serious security issue on CSS servers, exposed system command
Hi sirtom, Thursday, April 6, 2006, 3:45:15 PM, you wrote: sed> You just don't need to install this addon... sed> So Valve doesn't need to fix "it"... How am I supposed to protect the machine that handles many customer servers from executing arbitrary commands ? Can you tell me that ? Or how am I supposed to tell them what plugins to install and what plugins not to install ? regards, Adam Grzesko [EMAIL PROTECTED] ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux