Xref: utzoo comp.protocols.tcp-ip:5254 comp.unix.wizards:12234
Path: utzoo!attcan!uunet!ncrlnk!ncrcae!hubcap!gatech!ncar!boulder!sunybcs!rutgers!netsys!vector!rpp386!jfh
From: jfh@rpp386.Dallas.TX.US (John F. Haugh II)
Newsgroups: comp.protocols.tcp-ip,comp.unix.wizards
Subject: Re: a holiday gift from Robert "wormer" Morris
Message-ID: <8518@rpp386.Dallas.TX.US>
Date: 9 Nov 88 00:28:25 GMT
References: <1698@cadre.dsl.PITTSBURGH.EDU> <2060@spdcc.COM> <24@jove.dec.com> <1445@anasaz.UUCP> <17823@glacier.STANFORD.EDU>
Reply-To: jfh@rpp386.Dallas.TX.US (John F. Haugh II)
Distribution: na
Organization: River Parishes Programming, Dallas TX
Lines: 18

In article <17823@glacier.STANFORD.EDU> jbn@glacier.UUCP (John B. Nagle) writes:
>      This is serious.  The knowledge that this person had the opportunity to
>tamper with the master source code for UNIX is very worrisome.  A major 
>examination of all AT&T-provided security related code is in order.

Not just security related code - but ALL code.

A trojan horse in awk or sed would be just as deadly.  I'm casting my vote
with some other poster who suggested taking a fine toothed comb to all the
UUCP code.

Meanwhile, I'm working on a replacement login so I can have a shadow password
file on this machine.
-- 
John F. Haugh II                        +----Make believe quote of the week----
VoiceNet: (214) 250-3311   Data: -6272  | Nancy Reagan on Artifical Trish:
InterNet: jfh@rpp386.Dallas.TX.US       |      "Just say `No, Honey'"
UucpNet : <backbone>!killer!rpp386!jfh  +--------------------------------------