Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!usc!petunia!news
From: aschaffe@polyslo.CalPoly.EDU (JedHead)
Newsgroups: comp.unix.sysv386
Subject: Re: SECURITY BUG IN INTERACTIVE UNIX SYSV386
Message-ID: <27b9fc7e.3f86@petunia.CalPoly.EDU>
Date: 14 Feb 91 02:57:02 GMT
Organization: Heart of Gold III BBS.. Coming Soon
Lines: 27



So then martys@ism.isc.com announced:
>
>For all other users, INTERACTIVE Systems Corp. will provide a
>comprehensive fix to the problem. [...]
>      As with all INTERACTIVE bug-fix diskettes, it will be
>available free of charge through the Support department.
>
>Interactive Systems Corp.

Huge kudos going out to the person who alerted the net to the Security
Hole.. I, too, had some reservations at first about the propriety of
releasing that information "to the world", but quickly realized that it
was a sure-fire way to get a reaction from the vendors...

A 3-day cycle from the "Hey, ISC!" message to an announcement of a free
bug fix is something to be impressed with..

Allan
aschaffe@polyslo.calpoly.edu

-- 
A top Mideast expert at a major American university pointed out that
there is one final chance for a diplomatic solution to the Persian Gulf
crisis that hasn't been tried.  The United States must send a message
to Saddam Hussein saying "SIMON SAYS get out of Kuwait."