Hosting Provided By

Re: ping22: can not kill this process

From: Luis Mondesi <lemsx1(at)gmail.com>
Date: Sat Jan 05 2008 - 16:28:56 EST

On 5 Jan 2008 16:33:07 GMT, Paul Hink <paul-usenet@hink.name> wrote:
> Thomas Hochstein <ml@ancalagon.inka.de> wrote:
>
> > Raphael Geissert schrieb:
> >
> >>> disable_functions = dl, phpinfo, system, mail, include, shell_exec,
> >>> exec,
> >>
> >> include()? I don't want to imagine how many scripts will break.
> >
> > A script that doesn't run is a *very* secure script.
>
> That depends on the error handling.

Good one! LOL

spilling ugly db*connect() errors to the world to see is not very secure indeed. or how about: foo() could not open /etc/my-secret-users file....

-- 
----)(-----
Luis Mondesi
Maestro Debiano

----- START ENCRYPTED BLOCK (Triple-ROT13) ------
Gur Hohagh [Yvahk] qvfgevohgvba oevatf gur fcvevg bs Hohagh gb gur
fbsgjner jbeyq.
----- END ENCRYPTED BLOCK (Triple-ROT13) ------


-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Sat Jan 5 16:29:37 2008

This message: [ Message body ]
Next message: Rick Moen: "Re: ping22: can not kill this process"
Previous message: Paul Hink: "Re: ping22: can not kill this process"
In reply to: Paul Hink: "Re: ping22: can not kill this process"
Next in thread: Rick Moen: "Re: ping22: can not kill this process"
Reply: Rick Moen: "Re: ping22: can not kill this process"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Mar 19 2008 - 06:55:00 EDT