Security Advisories

Trustwave Press Releases

« The Kernel is calling a zero(day) pointer – CVE-2013-5065 – Ring Ring | Main | TrustKeeper Scan Engine Update - December 12, 2013 »

13 December 2013


Why would any self-respecting sys-admin allow the CFIDE directory to be visible to the public? It is for admins ONLY. This is not a fault of the platform or code base. It's not unlike having the Tomcat admin panel publicly viewable (which any admin worth her salt would never allow). Why would that same admin allow full access to the CFIDE directory? This is entirely the fault of uninformed administrators - again, not the platform - although the platform is entirely blamed by an uniformed tech crowd.

Verify your Comment

Previewing your Comment

This is only a preview. Your comment has not yet been posted.

Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.


Post a comment