Thread: Requesting Help Securing a Calibre Server
View Single Post
Old 08-28-2014, 11:49 PM   #2
kovidgoyal
creator of calibre
kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.kovidgoyal ought to be getting tired of karma fortunes by now.
 
kovidgoyal's Avatar
 
Posts: 45,384
Karma: 27756918
Join Date: Oct 2006
Location: Mumbai, India
Device: Various
If some can read the process table on your server, you are already screwed. There are literally dozens of local privilege escalation exploits on linux.

But, if you dont want to set a password in the calibre server, reverse proxy it behind apache or nginx or whatever. Instructions on how to reverse proxy are in the user manual.
kovidgoyal is offline   Reply With Quote