I don't see in what it would be hard to guess it. Bot admins should know the difference between a website accessible from the Internet and a website accessible from a local net: nothing.
More over, I don't think knowing the title of a page is that dangerous. The only risk is if there is some kind of web application that allows to run actions based on GET parameters, which is a known _very bad_ design pattern, also known as. CSRF (which means something like Cross Site Request Forgering). Ralph Corderoy <ra...@inputplus.co.uk> wrote: >> There isn't warning about "Unix progstats" command giving out PID, >> username, ... > >It doesn't need one. It sounds more likely that it would give out that >kind of thing from its name. That a plugin typically used to print the ><title> of public web pages can be used to poke about the LAN isn't so >obvious IMHO. -- Sent from my Android phone with K-9 Mail. Please excuse my brevity. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/234629 Title: supybot !web title leaks LAN HTTP servers to the channel To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/supybot/+bug/234629/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
