Apparently the Sage BrickServer 2 is a ‘virtually impenetrable secure web server appliance’. And all without needing patches too. Which is kind of comforting, don’t you think children? In fact it’s so secure that the company refuses to publish details of its price, just in case you hack the tax. Or something.
Within the constraints of this analysis we found the BRICKServer Web Appliance to be very robust for attacks against the server. In particular, the removal of the shell to prevent execution of unauthorized services will address the threat from the novice hacker who primarily uses existing scripts that require a shell to work. This meant that we were driven to play a more sophisticated hacker and to delve more deeply into the source code.
