[asterisk-users] DeadAgi
Steve Edwards
asterisk.org at sedwards.com
Thu Sep 17 16:48:40 CDT 2009
On Thu, 17 Sep 2009, Anahi Ludueña wrote:
> Thanks for the answers!
> The file didn't have the first line!
> #!/usr/bin/php
Glad you found the answer. However...
> The command ls -l returns:
>
> -rwxrwxrwx 1 root root 140 Sep 17 15:42 finconf.php
Having an executable with 777 permissions is a very bad idea. Think about
somebody (or some program) executing something like:
echo "rm -f -r /whatever-they-want" \
>/var/lib/asterisk/agi-bin/finconf.php
--
Thanks in advance,
-------------------------------------------------------------------------
Steve Edwards sedwards at sedwards.com Voice: +1-760-468-3867 PST
Newline Fax: +1-760-731-3000
More information about the asterisk-users
mailing list