Hackers are discovering Swikis
Jochen Schneider
josch at isg.cs.uni-magdeburg.de
Mon Sep 8 08:47:48 UTC 2003
Yes, passwords are inconvenient, which leads to sloppiness at times.
There is an interesting entry on the Meatball Wiki, "Avoid Illusion"
http://www.usemod.com/cgi-bin/mb.pl?AvoidIllusion
part of a discussion on SoftSecurity:
http://www.usemod.com/cgi-bin/mb.pl?SoftSecurity
Jochen
Roel Wuyts <wuyts at iam.unibe.ch> writes:
> We had several attacks in Bern as well (quite some time ago,
> actually). We just do not allow uploads, which seems to be enough to
> scare most of them away. Of course, this does not disallow them to put
> links, and you might need uploads, but if you can do without uploads
> you can give it a try...
>
> PS: Yes, you can of course set the passwords, but I tend to always
> forget the ones I really need so just disabling uploads is easier :-)
>
> On Saturday, Sep 6, 2003, at 10:53 Europe/Zurich, Michael Rueger wrote:
>
>>
>> Hi all,
>>
>> it finally happened: a couple of hackers discovered that swikis are
>> an easy target. They already used three (!) of the ones I'm running
>> to store links, videos and stuff. As a consequence I will need to
>> lock all of them with a password.
>> If you are running swikis on the net, either lock them or at least
>> keep a close eye on them.
>>
>> So ignoring the issue of security finally comes back to haunt us
>> (again).
>>
>> Michael
More information about the Squeak-dev
mailing list
|