On Sat, Dec 27, 2014 at 05:47:47AM -0800, Stuart Dallas wrote: > Came across this today and thought it might be of interest. Some food for thought at the very least. > > > http://vimeo.com/11213607 > > > > Note that the whole scenario starts with a lack of adequate MySQL escaping. The smallest vulnerability can lead to a massive intrusion. > > > -Stuart > Having FTP/TCP:21 open to the WWW is the equivalent of (and forgive me, but...) removing your pants, handcuffing your wrists to your ankles, standing on the street in a large city and painting "rape me" on your bum. It's the 21st century, for crying out loud; there are many more secure mechanisms. If anyone is reading this and has FTPD open to any and all comers on the WWW, please consider this an earnest plea to find someone who understands security and hire them right away. But thanks for the interesting video, nonetheless. Always stuff to be learned. Kevin Kinsey -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
