[Zope-dev] Vulnerability: attacking can get file list and directory

Chris Withers chrisw@nipltd.com
Mon, 24 Sep 2001 17:10:50 +0100


marc lindahl wrote:
> 
> Be careful of that -- I recently got *flooded* with error emails from a
> recent bout of the Code Red worm looking for files that weren't on my server
> :(

Yup, had that too... I patched BaseRequest.py to not bitch ;-)

Mindyou I surpassed myself with a similar thing with a bit of Notes/Zope
integration that resulted in me gettign 17,000 emails oen sunny morning...

At least I know we have a decent mail server ;-)

Chris