[prev in list] [next in list] [prev in thread] [next in thread]
List: privoxy-developers
Subject: [privoxy-devel] [ ijbswa-Bugs-1997374 ] SECURITY VULNERABILITY!!!
From: "SourceForge.net" <noreply () sourceforge ! net>
Date: 2008-06-19 10:36:08
Message-ID: E1K9HUu-0008GW-3C () 665xhf1 ! ch3 ! sourceforge ! com
[Download RAW message or body]
Bugs item #1997374, was opened at 2008-06-18 22:28
Message generated for change (Comment added) made by hal9
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=111118&aid=1997374&group_id=11118
Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: other
Group: version 3.0.6
Status: Closed
Resolution: None
Priority: 5
Private: No
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: SECURITY VULNERABILITY!!! HTTP Header Remote Toggle!
Initial Comment:
Allowing websites to toggle Privoxy on and off using an HTTP Header, is a major security risk!!!
----------------------------------------------------------------------
>Comment By: Hal Burgiss (hal9)
Date: 2008-06-19 06:36
Message:
Logged In: YES
user_id=322640
Originator: NO
Yes, it probably is. You need to upgrade to a newer version. This can
feature can be disabled in the config, and also can really be disabled as a
compile time option (for some time now).
----------------------------------------------------------------------
Comment By: Hal Burgiss (hal9)
Date: 2008-06-19 06:36
Message:
Logged In: YES
user_id=322640
Originator: NO
Yes, it probably is. You need to upgrade to a newer version. This can
feature can be disabled in the config, and also can really be disabled as a
compile time option (for some time now).
----------------------------------------------------------------------
Comment By: Hal Burgiss (hal9)
Date: 2008-06-19 06:35
Message:
Logged In: YES
user_id=322640
Originator: NO
Yes, it probably is. You need to upgrade to a newer version. This can
feature can be disabled in the config, and also can really be disabled as a
compile time option (for some time now).
----------------------------------------------------------------------
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=111118&aid=1997374&group_id=11118
-------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http://sourceforge.net/services/buy/index.php
_______________________________________________
Ijbswa-developers mailing list
Ijbswa-developers@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ijbswa-developers
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic