Re: OT: What's up with the starship?
- From: Shane Hathaway <shane@xxxxxxxxxxxxxxx>
- Date: Mon, 16 Oct 2006 14:41:46 -0600
Fredrik Lundh wrote:
Shane Hathaway wrote:
> I don't know if this concern applies to Starship specifically, but it
> seems to apply to thousands of web sites running Python CGIs and
> Python web servers.
so are we seeing thousands of web sites running Python CGIs and web
servers being attacked right now?
No, but it often takes a long time for servers to get patched, so the
window for intruders is going to be open for a while. I'm trying to
understand:
a) how urgent and/or exploitable this is,
b) how I can check whether a given Python installation (running on a
server) has been patched, and
c) whether the security advisory downplays the risk more than it should,
since it appears that many Zope/Plone web servers are vulnerable.
Shane
.
- References:
- OT: What's up with the starship?
- From: Thomas Heller
- Re: OT: What's up with the starship?
- From: T. Bryan
- Re: OT: What's up with the starship?
- From: rurpy
- Re: OT: What's up with the starship?
- From: Robert Hicks
- Re: OT: What's up with the starship?
- From: rurpy
- Re: OT: What's up with the starship?
- From: George Sakkis
- Re: OT: What's up with the starship?
- From: rurpy
- Re: OT: What's up with the starship?
- From: Fredrik Lundh
- Re: OT: What's up with the starship?
- From: rurpy
- OT: What's up with the starship?
- Prev by Date: Re:RELEASED Python 2.4.4, release candidate 1
- Next by Date: ADO with Python
- Previous by thread: Re: OT: What's up with the starship?
- Next by thread: Re: OT: What's up with the starship?
- Index(es):
Relevant Pages
|
