---

Wired: Teenager Finds Web-Server Hole

Thanks to Joey Maier for this link.

“Michael Righi of Pittsburgh said he discovered a flaw in the
Cobalt RaQ servers that lets malicious users enter the
system…”

“Cobalt Networks developed the RaQ as a low-cost,
low-maintenance Web server for the ISP market.”

“Vivek Mehra, vice president of product development at Cobalt,
said the hole, which could give a hacker access to a history file
documenting a user’s activities, wasn’t specific to their
appliance, but to the Linux operating system. Righi disagreed and
said RaQ’s default settings are to blame.”

Complete
story
.