Hackers are discovering Swikis
Roel Wuyts
wuyts at iam.unibe.ch
Sat Sep 6 22:24:29 UTC 2003
We had several attacks in Bern as well (quite some time ago, actually).
We just do not allow uploads, which seems to be enough to scare most of
them away. Of course, this does not disallow them to put links, and you
might need uploads, but if you can do without uploads you can give it a
try...
PS: Yes, you can of course set the passwords, but I tend to always
forget the ones I really need so just disabling uploads is easier :-)
On Saturday, Sep 6, 2003, at 10:53 Europe/Zurich, Michael Rueger wrote:
>
> Hi all,
>
> it finally happened: a couple of hackers discovered that swikis are an
> easy target. They already used three (!) of the ones I'm running to
> store links, videos and stuff. As a consequence I will need to lock
> all of them with a password.
> If you are running swikis on the net, either lock them or at least
> keep a close eye on them.
>
> So ignoring the issue of security finally comes back to haunt us
> (again).
>
> Michael
>
>
>
Roel Wuyts Software
Composition Group
roel.wuyts at iam.unibe.ch University of Bern,
Switzerland
http://www.iam.unibe.ch/~wuyts/
Board Member of the European Smalltalk User Group: www.esug.org
More information about the Squeak-dev
mailing list
|