On Mon, 2005-12-19 at 22:14 +0530, Rahul Sundaram wrote: > Hi > > >Am I the only person here who has had ANY security training at all? > > > >There are a lot of people out there who wish to do harm to anything they > >can - or at the very least send us crap about viagra and cialis. > > > >We need to stop being naive and act accordingly. > > > If someone happens to deface or spam a few non central wiki pages, how > does that affect security? That depends. If they deface it with kiddie porn it means we immediately go offline as our servers are confiscated by the federal authorities pending an investigation. I'd say that's a pretty serious Denial-of-service vulnerability. If the service provided by the wiki is providing valid and trustworthy information than any thing that maliciously degrades that is a Denial-of-service attack. That's a security vulnerability. -sv
