how to isolate a virtual hosted website, in order to do a A&P?

From: dented-halo@hushmail.com
Date: Fri Feb 07 2003 - 02:01:22 EST


('binary' encoding is not supported, stored as-is) a customer has asked me to take a look at his web page and "poke around",
initial investigation shows that it is hosted on a large web hosting
companies IP# and is a virtual host off of that IP#.

Obviously hammering that main webhosting companies box would be a no no,
so how can i focus my security review on that clients specific box?

they are using apache, not IIS.

Any thoughts?

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:27 EDT