Runboy
03-14-2001, 04:38 AM
Major security breach on Interlands servers:
I checked my shared account at Interland.net and was surpriced to discover that you can access all files on the server with the File System Object (FSO). This is a major security breach, since that gives me access to all the files on 200 other accounts and I can easily get their usernames & passwords for their databases etc. It doesn't help much that they allow any IP adress to access their MS-SQL Servers, so if I or any other wanted to we could easily get full access to other peoples data. (PS - I contacted them about the issue and initially it took them 1½ week to even answer my email and when they finally did, they just said they would solve the problem sometime in the future.)
So Interland users. Everybody on you server has full access to your files ! ! !
I checked my shared account at Interland.net and was surpriced to discover that you can access all files on the server with the File System Object (FSO). This is a major security breach, since that gives me access to all the files on 200 other accounts and I can easily get their usernames & passwords for their databases etc. It doesn't help much that they allow any IP adress to access their MS-SQL Servers, so if I or any other wanted to we could easily get full access to other peoples data. (PS - I contacted them about the issue and initially it took them 1½ week to even answer my email and when they finally did, they just said they would solve the problem sometime in the future.)
So Interland users. Everybody on you server has full access to your files ! ! !