Re: [NGSEC] AntiPharming v1.00 FREE

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: [NGSEC] AntiPharming v1.00 FREE
From: Ansgar -59cobalt- Wiechers <bugtraq@xxxxxxxxxxxxxxxx>
Date: Thu, 16 Jun 2005 00:40:03 +0200
In-reply-to: <8c643a5005061414192ac07446@xxxxxxxxxxxxxx>; from eslerj@xxxxxxxxx on Tue, Jun 14, 2005 at 05:19:57PM -0400
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mail-followup-to: bugtraq@xxxxxxxxxxxxxxxxx
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20050614111716.13DDD1FD81@xxxxxxxxxxxxxxxxxxx> <8c643a50050614141878efb1b5@xxxxxxxxxxxxxx> <8c643a5005061414192ac07446@xxxxxxxxxxxxxx>
Resent-date: Sat, 25 Jun 2005 16:05:14 +0200
Resent-from: cobalt@xxxxxxxxxxxxxxxx
Resent-message-id: <200506251405.QAA12432@xxxxxxxx>
Resent-to: bugtraq@xxxxxxxxxxxxxxxxx
User-agent: Mutt/1.2.5i

On 2005-06-14 Joel Esler wrote:
> "  * Denying any user (even Administrator) to write to the hosts file.
>    * Denying any user (even Administrator) to change your DNS settings."
>   
> Then who is going to modify the settings?

An administrator, because he/she can easily (re-)acquire those
permissions.

Regards
Ansgar Wiechers
-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

References:
- [NGSEC] AntiPharming v1.00 FREE
  - From: lists
- Re: [NGSEC] AntiPharming v1.00 FREE
  - From: Joel Esler

Prev by Date: Re: Bluetooth SIG Denial of Service vulnerability
Next by Date: Re: PHP nuke XSS vulnerability
Previous by thread: Re: [NGSEC] AntiPharming v1.00 FREE
Next by thread: Re: [NGSEC] AntiPharming v1.00 FREE
Index(es):
- Date
- Thread