Survey, Any help appreciated Options

[MarkDorley]

Hi

I was hoping you could fill out this myspace type survey... it's research for a university assignment. If you'd prefer not to then thats good to


1. What is your favorite thing to wear?
2. Last thing you ate?
3. One place you will NEVER eat at?
4. Would you date anyone you met online?
5. The last place you went out to dinner to?
6. Who/What made you angry today?
7. What are your pets called?
8. Do you feel safe online?
9. Ever gone skinny dipping?
10. Favorite type of Food?
11. Favorite holiday:
12. Do you download music:
13. Opinion of Chinese symbol tattoos?
14. Have you ever bungee jumped?
15. Have you ever Sky-dived?
16. Have you ever gone white-water rafting?
17. Has anyone ten years older than you ever hit on you?
18. How many pets do you have?
19. What are you listening to right now?
20. What is your current favorite song?
21. What was the last movie you watched?
22. Do you wear contacts?
23. Where was the last place you went besides your house?
24. What are you afraid of?
25. How many piercings have you had?
26. Do you have any tatoos
27. What do you usually order from Starbucks?
28. Have you ever fired a gun:
29. Are you missing someone?
30. Favorite TV show?
31. Ever done an IQ test, if so what score?
32. Favorite movie of all time?
33. Have you ever been caught doing something you weren't suppose to?
34. Favorite smell?
35. Butter, plain, or salted popcorn?
36. Do you consider yourself bad/average/good with computers?
37. Do you like Michael Jackson?
38. What's the longest time you've gone without sleep?
39. Where is the weirdest place you have slept?
40 Who was your last phone call?

thank you.

[Magik5]

but isnt that obvious anyway... no webhosting companies in their right minds will give customers root access to logs/apache conf files etc ... or am i wrong?

youd have to go dedicated or whatever for full rw permissions, unless your that 1337 that chmod doesnt apply to you

[MonkeyFiend]

nope, quite correct.

[fido77]

to be fair it's not that simple......

If this was some spotty linux wannabe that flattened their dell pc and stuck on red hat and apache just to be l33t, then yes... there's probably a lot one could do.

If on the other hand we're talking about a shared linux/apache webhosting service.. same as many you'd rent from around the place. The markdorley user is not a superuser and has no root access. In fact he has no actual real permissions within the server structure. For reference kernel 2.6.24.2dn.am with apache 1.3.41

Assuming I created a site called markdorleycantdowebsites.com and was assigned by the powers ((or scripts) that be a user account called fidoisnotasgayasmonkey with permissions to write files within the public html or www direcotories

The fidoisnotasgayasmonkey user is a restricted.

Commonly (unfortunately.. chroot jail ftw!) the owner of the access-logs is root (0) - even if the fidoisnotasgayasmonkey user ftp'd to their shiny new hosting and went to their access-logs folder they would find a bunch of files with 640 or similar permissions owned by root, (-rw-r------ if you prefer), the group can read em, but only the owner can write to them and I mentioned before the owner is root .

Fidoisnotasgayasmonkey would not be able to tamper with these files and would logout safe in the knowledge that his access logs are secure and could return to pwning at L4D

assuming this is true, which i'm sure it is. you still touch youself at night

[MonkeyFiend]

it's a dirty job, but someones got to do it

and user is fidoisgay is a secret superuser account that comes with all versions of unix.. it's just a well kept secret

[=R6= Raile]

IT'S MONKEYFIEND
FIEND!
with an FIE!
There's no R in there!
MONKEYFIEND!

I lol'd pretty hard at that..
Wouldn't be so bad if not for monkey getting so upset about it

[Lawpf2001]

I am quite happy to say I have noclue what your all on about

[Magik6]

Agreed

[MonkeyFiend]

I find myself wondering whats wrong with you, Mr. Dorley?

Learning about security is a good thing; but trying to do so by attempting to gain root admin on this site is frankly retarded.

Running linux (especially feisty fawn) does not make one l33t. All the form entries were santised here so there won't be any code injections or whatever the hell you thought you were doing.

Now...

1. Your computers root password is currently set to: markdorkley1, feel free to change this.

2. Once online, don't return here or mail me.. Attempting to hack this website does not make us bestest buddies

3. Get a haircut - stupid fringe; you look like a chav.

k. thx. bye.