Security review

2009-05-28T09:43:35-04:00

A first comment, none of the commands are safe in the concept that there is no password verification of any user. If you make a slight typo or mistake when adding new hostmasks, or let people use the ident-command from shared IP-pools, this could very well grant one malicious user access to sensitive commands.

Other than that, your code looks ok at a first glance.

Statistics: Posted by nml375 — Thu May 28, 2009 9:43 am

Security review

2009-05-28T16:50:13-04:00

I decided this week to write my own public commands script. Now i know there are security issues involved.
Before the script got too bulky i want to have the security done good.

Can some of u review the security in my script?

EDIT: My script went public. See here: http://forum.egghelp.org/viewtopic.php?t=16913

Statistics: Posted by Nathema — Thu May 28, 2009 3:58 am

egghelp/eggheads community

Security review

Security review