Selida sxetiki me programmatismo, diktua kai leitourgika sustimata.

[Michael Menegakis]

On Wed, 18 Sep 2002 11:43:51 +0100
Michael Menegakis <admin at www0.org> wrote:

> On Wed, 18 Sep 2002 12:58:08 +0300
> Stelios Bounanos <sb at dial.pipex.com> wrote:
> 
> >  >>>>> On Wed, 18 Sep 2002 09:49:56 +0100, Michael Menegakis
> >  >>>>> <admin at www0.org> was rumoured to have said:
> > 
> >  > On Wed, 18 Sep 2002 10:17:57 +0300
> >  > "CyberCr33p" <chris at coderz.gr> wrote:
> > 
> >  >> kalo deite to parakatw url: http://www.coderz.gr/about.php
> >  >> 
> >  >> Oso gia to nickname mou to exw edw kai arketa xronia. Telos
> >  >thelo na> anaferw oti sti selida tha uparxoun oti programmata
> >  >stelnei o kosmos> asxeta me to ti kanoun ta programmata auta. Tha
> >  >perilambanetai mono o> kwdikas kai oxi executable arxeia.
> > 
> >  > E den antexw, eixa grapsei ena email kai to esvisa giati to
> >  > thewrisa kapws prosblitiko pros esena. Alla pleon prepei na sto
> >  > pw.
> > 
> >  > Prepei na aferesete kathe exploit apo kei mesa. Einai entelws
> >  > blakwdes na dineis sto kosmo tetoia opla. 
> > 
> > Grok this: ta exploits einai xrhsimo na yparxoyn trigyrw. Piezoyn
> > tis etairies na dior8wnoyn ta programmata toys. Epitrepoyn stoys
> > administrators na blepoyn an ta mhxanhmata toys einai vulnerable kai
> > an ontws oi dior8wseis doyleyoyn opws prepei.
> > 
> >  > Anagnwrizw pws to site periexei polla omorfa scriptakia pou tha
> >  > mporousan na theorithoun "examples" gia kapoion pou mathainei
> >  > programmatismo se linux kai freebsd alla na dineis tromera
> >  > epikindina exploits se public site einai entelws ilithio. 
> > 
> > Ypo8etontas oti symfwneis me ayto poy egrapsa pio panw, pws
> > proteineis na diadidontai ta exploits an oxi se public sites?
> > 
> >  > An theleis na faneis xrhsimos, dwse th gnwsh ston allo na ta
> >  > ftiaksei monos tou. Giati apo oso katalaba den eisai xazos, exeis
> >  > gnwseis kai polla scripts ekei mesa den einai anaferomena se
> >  > exploits. Isws, lew isws, kapoies extreme katastaseis isws na
> >  > diakiologoun th xrhsh enos exploit pros xarhn ths "fwnhs tou
> >  > laou". Alla h fwnh tou kathe 12xronou pou thelei na "riksei to
> >  > internet" einai pisteuw hdh arketa ixhrh.
> > 
> > An enas 12xronos mporei na soy riksei to mhxanhma de 8a eprepe na to
> > eixes kan panw sto public internet, moy fainetai.
> > 
> >  > Kai IN ANY WAY, kathe swstos "coder" einai coder, oxi antigrafeas
> >  > exploit.
> > 
> > Symfwnw. Epishs symfwnw oti to www.coderz.gr ayth th stigmh den
> > einai toso selida gia "leitoyrgika systhmata kai programmatismo",
> > oso selida gia script kiddies. So what?
> > 
> >  > Episis auto to "periexete kwdikas oxi executable arxeia" mh to
> >  > ksanapeis please. Oxi apla einai 1 leptou psaksimo na brei o
> >  > allos to "cc -o" alla einai kai sta comments tou keimenou h
> >  > diadikasia (o theos na thn kanei) for gawds sake.
> 
> Stelio, upothetw pws oloi kseroume pws an exei bgei exploit se tetoiou
> eidous site exei enhmerwthei o maintainer. Oi periptwseis pou eftase
> se tetoiou eidous sites exploit prin thn enhmerwsh tou maintainer
> einai anyparktes. Ola auta ta eipa exontas sto mualo mou auto to
> gegonos.
> 
> Kaneis maintainer de tha afhsei trypa anoixth an tou sfuriksan exploit
> estw kai an to exoun 2 atoma, de tha perimenei olo to internet na to
> xrhsimopoiisei prin probei se energeies kai enhmerwsei ths omades pou
> xrhsimopoioun to logismiko tou.
> 
> - mike.

Na symplirwsw pws exontas auta upopsin,  h upoxrewsh sou den einai na
perimeneis tetoiou eidous sites kai 12xrona prin proxorhseis sthn swsth
enhmerwsh peri tou logismikou sou kai ananewsh tou h opoia ginetai MONO
mesw tou maintainer kai twn parwxewn tou logismikou toy. An breis
exploit se web site eukola prosbasimo apo to google.com tote eisai enas
sto ekatommyrio. H swsth enhmerwsh mesw toy parwxea (p.x.
distribution) h' tou programmatisth  kai sinithws akoma kai  h tyflh
ananewsh toy logismikou sou mesw security updates einai YPER arketa.
Akoma kai ta kata kairous "episima" kentra security de ta eida na kanoun
post kati to opoio den exei hdh diorthothei.

- mike.

===
 Don't underestimate the power of stupid people on large groups.