[BlueOnyx:10768] Re: MySQL Vulnerability
Tobias Gablunsky
t.gablunsky at cbxnet.de
Tue Jun 12 08:03:24 -05 2012
I read a tip on how to check if your mysql installation ist vulnerable yesterday:
for i in `seq 1 1000`; do mysql -u root --password=bad -h 127.0.0.1 2>/dev/null; done
Just did this on an BO server and did not get access - this is a good sign! :)
Tobias
> -----Original Message-----
> From: blueonyx-bounces at mail.blueonyx.it
> [mailto:blueonyx-bounces at mail.blueonyx.it] On Behalf Of DD
> Sent: Tuesday, June 12, 2012 1:33 PM
> To: BlueOnyx General Mailing List
> Subject: [BlueOnyx:10767] MySQL Vulnerability
>
> http://www.pcadvisor.co.uk/news/security/3363319/mysql-vulnera
> bility-allows-
> attackers-bypass-password-verification/
>
> Is BX immune to this? I realise the DBs are not open to the
> internet by
> default but it would be comforting to know that we're immune
> to malicious
> users as well.
>
>
>
> DD
>
>
> _______________________________________________
> Blueonyx mailing list
> Blueonyx at mail.blueonyx.it
> http://mail.blueonyx.it/mailman/listinfo/blueonyx
>
More information about the Blueonyx
mailing list