GoFuckYourself.com - Adult Webmaster Forum - View Single Post - TMM and TMM / NATS clients Please explain this and SHOW me I'm wrong!!!!

ServerGenius · 12-27-2007, 12:10 AM

oh 1 more think that I feel I should mention is you that most security related
issues, vulnerabilities and possibilities that allow them to exploit almost never
are a result of 1 reason or flaw in a single part in the whole chain of things that
make up the total setup.....it's too easy to blame 1 thing or problem as the
whole reason bad things could happen......

there's a lot of other things other than a piece of software which affect
how much, how easy or even make it possible for things to go wrong that
wouldn't be possible to be exploited in a lot of cases when all related
parts in the whole setup would be all the way they should be........

everything can be fully secure itself but that won't make any difference
if the root password of your server is something silly as "password".

what I mean is the only thing that matters are the things that are possible
to exploit and none of whatever things maybe but only in certain situations
if they apply.....

example: using mysql username without a password for a mysql database
isn't the same on a server that doesn't allow mysql connections from any
other ip than 127.0.0.1 as a server who allows and accepts connections
from any real internet routed ips....

Is it a good idea to do on any of these examples......no it isn't.....is it as
bad or the same on these examples defenitely not.......could you honestly
say if it goes wrong....that the only reason for it is they way mysql is
setup is the only reason that caused it to go wrong.......I guess you could
but you would fool yourself if you did.........

Moral of this story pointing the finger to one reason which something went
wrong isn't the best thing todo until you ruled out every other option.....that
said I can safely say you none of those who have pointed their finger already
didn't rule out most if any other option at all as a possible option that could
be responsible for anything that went wrong.......

this probably also doesn't make much sense if it doesn't don't bother to try
to decypher it but just wait till tomorrow and a better explanation of what
I tried to say

Shutting down my computer now......

12-27-2007, 12:10 AM
ServerGenius Confirmed User Join Date: Feb 2002 Location: Amsterdam Posts: 9,377	oh 1 more think that I feel I should mention is you that most security related issues, vulnerabilities and possibilities that allow them to exploit almost never are a result of 1 reason or flaw in a single part in the whole chain of things that make up the total setup.....it's too easy to blame 1 thing or problem as the whole reason bad things could happen...... there's a lot of other things other than a piece of software which affect how much, how easy or even make it possible for things to go wrong that wouldn't be possible to be exploited in a lot of cases when all related parts in the whole setup would be all the way they should be........ everything can be fully secure itself but that won't make any difference if the root password of your server is something silly as "password". what I mean is the only thing that matters are the things that are possible to exploit and none of whatever things maybe but only in certain situations if they apply..... example: using mysql username without a password for a mysql database isn't the same on a server that doesn't allow mysql connections from any other ip than 127.0.0.1 as a server who allows and accepts connections from any real internet routed ips.... Is it a good idea to do on any of these examples......no it isn't.....is it as bad or the same on these examples defenitely not.......could you honestly say if it goes wrong....that the only reason for it is they way mysql is setup is the only reason that caused it to go wrong.......I guess you could but you would fool yourself if you did......... Moral of this story pointing the finger to one reason which something went wrong isn't the best thing todo until you ruled out every other option.....that said I can safely say you none of those who have pointed their finger already didn't rule out most if any other option at all as a possible option that could be responsible for anything that went wrong....... this probably also doesn't make much sense if it doesn't don't bother to try to decypher it but just wait till tomorrow and a better explanation of what I tried to say Shutting down my computer now...... __________________ \| http://www.sinnerscash.com/ \| ICQ: 370820 \| Skype: SinnersCash \| AdultWhosWho \|