lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <411FCBC4.1050802@sbcglobal.net>
From: chromazine at sbcglobal.net (Steve Kudlak)
Subject: ws_ftp.log


Giggle! I remember when I was first recovering from a serious
illness and I had been off line for two years. It was pretty gloomy
and I wasn't expected to make it. When I  did recover lots of my
life had that "whee! I am alive and this is interesting, and that is
interesting and the girls are pretty...."  aspect and it drove my
friends who had been around and who were overworked up the wall.

Have Fun,
Sends Steve

morning_wood wrote:

>your serious??
>this issue has been arround for about 10 years...
>try googling "ws_ftp.ini" where you can simply drop the
>ini in your ws_ftp folder, convert the hashes or import into your
>favorite ftp client that supports ws_ftp.ini style format.
>
>
>m.wood
>
>----- Original Message ----- 
>From: "Gaurang Pandya" <gaubrig@...oo.com>
>To: <full-disclosure@...ts.netsys.com>
>Sent: Sunday, August 15, 2004 5:19 AM
>Subject: [Full-Disclosure] ws_ftp.log
>
>
>  
>
>>Hi,
>>
>>WS_FTP is a popular & feature rich ftp client. It
>>makes upload/download as easy as drag & drop. But
>>mostly peoples using this forget that it creates a log
>>file with name ws_ftp.log. This file holds sensitive
>>data such as file source/destination and file name,
>>date/time of upload etc., People when use this to
>>upload files to their website, never know that along
>>with other files even ws_ftp.log file also gets
>>uploaded to the webserver, making it globally
>>accessible.
>>
>>    
>>
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.netsys.com/full-disclosure-charter.html
>
>  
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040815/b64cc51a/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ