Path: utzoo!mnetor!uunet!munnari!murdu!u3369429
From: u3369429@murdu.OZ (Michael Bednarek)
Newsgroups: comp.os.vms
Subject: Re: Hacker hits VMS
Message-ID: <1350@murdu.OZ>
Date: 20 Mar 88 23:29:04 GMT
References: <3749@mtgzz.UUCP> <923@cfa.cfa.harvard.EDU> <7755@oberon.USC.EDU>
Followup-To: comp.os.vms
Organization: I.A.E.S.R., Melbourne University
Lines: 18
Keywords: security, Chaos Computer Club

In article <7755@oberon.USC.EDU> tli@sargas.usc.edu (Tony Li) writes:
>In article <923@cfa.cfa.harvard.EDU> ward@cfa.harvard.EDU (Steve Ward) writes:
>    Does anyone know if this is a REAL security hole in VMS
>
>Yes, this is the result of a real hole.  Do you recall the V4.4
>SECURESHR bug?

Eh? That hole
  o was plugged long ago. Any site still running 4.4 without the patch
    deserves it.

  o didn't allow unauthorized logins.
--
Michael Bednarek, Institute of Applied Economic and Social Research (IAESR)
   //  Melbourne University,Parkville 3052, AUSTRALIA, Phone:+61 3 344 5744
 \X/   Domain:u3369429@{murdu.oz.au | ucsvc.dn.mu.oz.au} | mb@munnari.oz.au
       "bang":...UUNET!munnari!murdu!u3369429     PSI%23343000301::U3369429
"POST NO BILLS."