Nmap Development: Re: Draft for hosted cgi

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Nmap Development mailing list archives

Re: Draft for hosted cgi

From: Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar>
Date: Wed, 24 May 2006 09:49:43 -0300

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

KarMax wrote:

Allow an unprivileged user to use raw sockets is a BAD idea.


Allow an unprivileged user to execute commands as root is worse, I believe.

Probably some kernel-level security would be nice, as an in-between option.

- --
Arturo "Buanzo" Busleiman - VPN Mail Project - http://vpnmail.buanzo.com.ar
Consultor en Seguridad Informatica - http://www.buanzo.com.ar
My Linux and Security Blog at http://linux-consulting.buanzo.com.ar/

Romper un sistema de seguridad los acerca tanto a ser hackers como
encender autos puenteando los convierte en ingenieros automotrices.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEdFZnAlpOsGhXcE0RAjZ8AJ4mdzJZp+yzEHy/UQH9JajhSxuStwCeI73J
EtaSl9h7ToPoh97kbvLzUEI=
=riI+
-----END PGP SIGNATURE-----


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev

By Date By Thread

Current thread:

Re: Draft for hosted cgi, (continued)
- Re: Draft for hosted cgi KarMax (May 24)
  - Re: Draft for hosted cgi Arturo 'Buanzo' Busleiman (May 24)
  - Re: Draft for hosted cgi Julien Delange (May 24)
    - Re: Draft for hosted cgi Arturo 'Buanzo' Busleiman (May 25)
- Re: Draft for hosted cgi Richard Moore (May 24)
- Re: Draft for hosted cgi Fyodor (May 26)
  - Re: Draft for hosted cgi Arturo 'Buanzo' Busleiman (May 26)