Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Path: utzoo!mnetor!seismo!rutgers!ames!sdcsvax!ucsdhub!hp-sdd!hplabs!hplabsc!daemon
From: mkhaw@teknowledge-vaxc.ARPA (Michael Khaw)
Newsgroups: comp.mail.elm
Subject: Re: ELM security hole
Message-ID: <1980@hplabsc.HP.COM>
Date: Tue, 9-Jun-87 16:24:54 EDT
Article-I.D.: hplabsc.1980
Posted: Tue Jun  9 16:24:54 1987
Date-Received: Fri, 12-Jun-87 04:48:25 EDT
Sender: daemon@hplabsc.HP.COM
Reply-To: mkhaw@teknowledge-vaxc.ARPA (Michael Khaw)
Organization: Teknowledge, Inc., Palo Alto CA
Lines: 21
Approved: taylor@hplabs (with 'postmail')

In article <1975@hplabsc.HP.COM> hplabs!seismo!munnari!mulga.oz!daemon (Esmond Pitt) writes:
>
>ELM appears to have a largish security hole. From the main menu try:
>
>	c /usr/[spool/]mail/<user>
>
>where <user> is somebody other than yourself. It lets me read their maildrop!


Our system does not allow this.  For context:

	Ultrix 1.2 VAX, running sendmail.
	/usr/spool/mail/* files are mode 600, each owned by the (recipient) user
	Elm 1.5b

Mike Khaw

-- 
internet:  mkhaw@teknowledge-vaxc.arpa
usenet:	   {hplabs|sun|ucbvax|decwrl|sri-unix}!mkhaw%teknowledge-vaxc.arpa
USnail:	   Teknowledge Inc, 1850 Embarcadero Rd, POB 10119, Palo Alto, CA 94303