Quote:
Originally Posted by drjones
Hackers can do plenty if you are publicly serving world writable directories and files through your webserver. No shell access needed.
|
Yeah, they can do plenty without shell access but doesn't it mostly involve feeding something to a script that executed it and they gain access that way.
They could flood the old version of SSH and cause integer overflow which allowed them server access without a password.
What have you seen that was different then that?
I mean, if you know then don't keep it a secret and let us all get hacked.