search for: highack

Contrary to the report, this only affect 1.3.x version of icecast, not _all_ versions. But this is a serious problem and I do hope you all took my advice last time and aren't running icecast as root. I'll try to have a patch today. jack. ----- Forwarded message from dizznutt@my.security.nl ----- Date: Tue, 2 Apr 2002 07:51:55 +0000 (GMT+00:00) From: dizznutt@my.security.nl To:

> I know how to get the passwords from a typical install of icecast. anyone have any ideas on what I should do with this info? > Should I just post it here in the public? I think the worst that will happen is someone can highack a server and cut off the > current stream and fed a new stream. Why don't you send it to me first :) That way I can begin work on a fix regardless of when you publish the info. jack. --- >8 ---- List archives: http://www.xiph.org/archives/ icecast project homepage: http://www.icecast...