Re: [d-security] Re: SECURITY HOLE in MySQL module in PHP

To: Christian Hammers <ch@westend.com>, Ralf Dreibrodt <ralf@dreibrodt.de>, debian-security@lists.debian.org
Subject: Re: [d-security] Re: SECURITY HOLE in MySQL module in PHP
From: Javier Fernández-Sanguino Peña <jfs@computer.org>
Date: Mon, 18 Feb 2002 18:18:59 +0100
Message-id: <[🔎] 20020218171859.GA29731@dat.etsit.upm.es>
In-reply-to: <[🔎] 20020206163123.GD22819@westend.com>
References: <[🔎] Pine.LNX.4.33.0202062159470.24262-100000@aurora.nsu.ru> <[🔎] 3C615933.9DC2B8B9@dreibrodt.de> <[🔎] 20020206163123.GD22819@westend.com>

On Wed, Feb 06, 2002 at 05:31:23PM +0100, Christian Hammers wrote:
> On Wed, Feb 06, 2002 at 05:26:27PM +0100, Ralf Dreibrodt wrote:
> > > Maybe debian developers should make a "quick and dirty" fix for this,
> > > because (as I can understand) php developers already knows about this
> > > hole and do still nothing.
> > just run apache chrooted and you don?t have problems like this.
> Doesn't work well if you have multiple virtual hosts on one server. 
> 

Could someone give a sample setup for the Debian-Security-HOWTO? With
a sample setup I mean one which can be easily made based on the
standard Debian configuration (not a referral to the Chrooting-HOWTO).

Javi

Reply to:

Follow-Ups:
- Re: [d-security] Re: SECURITY HOLE in MySQL module in PHP
  - From: Ralf Dreibrodt <ralf@dreibrodt.de>

References:
- SECURITY HOLE in MySQL module in PHP
  - From: "Dmitry N. Hramtsov" <hdn@nsu.ru>
- Re: SECURITY HOLE in MySQL module in PHP
  - From: Ralf Dreibrodt <ralf@dreibrodt.de>
- Re: [d-security] Re: SECURITY HOLE in MySQL module in PHP
  - From: Christian Hammers <ch@westend.com>

Prev by Date: Re: I want to test my firewall from the outside
Next by Date: Re: I want to test my firewall from the outside
Previous by thread: Re: [d-security] Re: SECURITY HOLE in MySQL module in PHP
Next by thread: Re: [d-security] Re: SECURITY HOLE in MySQL module in PHP
Index(es):
- Date
- Thread