Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!wuarchive!usc!snorkelwacker.mit.edu!bloom-beacon!eru!hagbard!sunic!mcsun!unido!alderan!chris
From: chris@alderan.uucp (Christoph Splittgerber)
Newsgroups: comp.unix.sysv386
Subject: Re: SECURITY BUG IN INTERACTIVE UNIX SYSV386
Keywords: BAD BUG
Message-ID: <330@alderan.uucp>
Date: 15 Feb 91 10:20:02 GMT
References: <KR3NBQQ@dobag.in-berlin.de> <329@alderan.uucp> <P46NPCO@dobag.in-berlin.de>
Organization: C. Splittgerber Datentechnik, Denkendorf, Germany
Lines: 22

In article <P46NPCO@dobag.in-berlin.de> lumpi@dobag.in-berlin.de (Joern Lubkoll) writes:
>chris@alderan.uucp (Christoph Splittgerber) writes:
>>In article <KR3NBQQ@dobag.in-berlin.de> lumpi@dobag.in-berlin.de (Joern Lubkoll) writes:

>>It's not a security hole, it's a SECURITY ABYSS.
>so it is !
>[]

>>So what to do now ? .....  -:(  -:(  -:(
>refer to alt.suicide

I don't know how much work it will be for ISC to fix this for 2.0.2
but as an alternative to alt.suicide I can think of a way that would
make at least a few people feel more secure again.
If they just release the changes they made to 2.2, then at least the
people with a co-proc. (like me) could help theirself.

                Chris
-- 
************************ Brain fault (core dumped) *************************
Replies-To:  chris@alderan.uucp        UUCP: uunet!mcsun!unido!alderan!chris 
Phone:       +49 711 344375            Fax:  +49 711 3460684