Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.2 GARFIELD 20/11/84; site garfield.UUCP
Path: utzoo!utcsri!garfield!andrew
From: andrew@garfield.UUCP (Andrew Draskoy)
Newsgroups: net.games.hack
Subject: potential security problem with hack
Message-ID: <2967@garfield.UUCP>
Date: Mon, 27-May-85 22:03:22 EDT
Article-I.D.: garfield.2967
Posted: Mon May 27 22:03:22 1985
Date-Received: Tue, 28-May-85 12:21:44 EDT
Distribution: net
Organization: Memorial U. of Nfld. C.S. Dept., St. John's
Lines: 14

It seems that some people have set up hack with hack.sh being a set-uid
shell script which changes to HACKDIR and then runs the real hack.  This
is a very bad idea. Set-uid shell scripts are very insecure, as has been
noted before in other newsgroups.  Send me mail from a "root" login if
you want more info.

Andrew
-- 
Andrew Draskoy
UUCP:	{akgua,allegra,cbosgd,ihnp4,mcvax,utcsri}!garfield!andrew
CDNNET:	andrew@garfield.mun.cdn
--
The opinions expressed above may not represent those of the author
after he has had some sleep.