Zope breakins

Peter Hansen peter at engcorp.com
Wed Jun 4 20:07:43 CEST 2003


Robin Becker wrote:
> 
> I notice that a Zope installation that has been running happily for some
> time has changes that I don't expect.
> 
> I originally set it up with two FTP servers on ports 21 and 8021, but I
> now see an FCGI server on port 21 (using the /Status page). This version
> is pretty out of date and I don't have good access
> 
> # Zope version: 2.0+
> # Python version: 1.5.2 (#0, Apr 13 1999, 10:51:12) [MSC 32 bit (Intel)]
> # System Platform: win32
> 
> so are there well known ways into Zope that could make an FTPServer
> transmute into an FCGIServer? If someone can do that do they have shell
> access ie have they installed their own cgi scripts somewhere?

Somebody accidentally change the command line arguments used to launch
the program and convert a "-f 21" option into a "-F 21" option...
or added "-F 21" where there was none, thinking he was explicitly specifying
the FTP port.

-Peter




More information about the Python-list mailing list