Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×

Comment Most insecure scripts ever (Score 2, Insightful) 523

We had a campus wide ban on any of Wright's cgi stuff. Lot's of unescaped system() and exec() and `` from old Matty. One of his scripts is universally known as the best mail forwarder/spam relays ever. Another would actually pass rm -rf * to the command line. All you had to do was stuff a semicolon after the form input. I spent a whole semester writing secure work-a-likes to his scripts and also writing LWP stuff that would poke around for his scripts on our user webspace -- especially the formmailer. Egads.

Slashdot Top Deals

If it is a Miracle, any sort of evidence will answer, but if it is a Fact, proof is necessary. -- Samuel Clemens

Working...