Security Audit, was Re: [crossfire] Server release?
Alex Schultz
alex_sch at telus.net
Sun Apr 17 13:17:38 CDT 2005
He said mitigate (as in, make somewhat less severe), not get rid of the
risks.
Mitch Obrian wrote:
>
Still can steal users pass hashes and delete all your
>
CF data. Bad.
>
>
--- Mark Wedel <
mwedel at sonic.net
> wrote:
>
>
>>
On the bright side, the server requires no special
>>
privileges to run, so could
>>
be run in a jail/zone/chroot environment to mitigate
>>
the risks.
>>
>>
More information about the crossfire
mailing list