[Typo3-linux] Typo3-LAMP SECURITY ISSUE+ Configuration error
Eike Kohler
eikekohler at uni-bonn.de
Tue May 13 23:47:25 CEST 2003
Hello everybody,
yesterday I downloaded the LAMP - Package fullpackage.tar.gz from www.lleuchter.de (Autobuild, revised version from 06-05-03) and installed everything with the script build_full.sh.
Beside some aborts because of missing packets (I have Redhat 7.3 installed; the missing packets were gcc, flex and bison) which I could overcome by installing the required packets, there was an issue with mysql - typo3 wasn't able to connect to mysql using the preconfigured user/password.
But when I checked the privileges in the mysql-databases that were installed with the package, I did not only discover the reason for the unability to connect (missing host for user mysql in table user - solved by "update mysql:user set host='localhost' where user='mysql'), I found two entries that probably should not be there:
1) grant all privileges with grant option to root at ftpscan-ceo.eaeurope.com
2) grant usage to ''@ftpscan-ceo.eaeurope.com
Can anybody explain why these entries are where they are, and in what way ftpscan-ceo.eaeurope.com is related to typo3?
Greetings,
Eike
More information about the TYPO3-linux
mailing list