Path: utzoo!utgpu!watmath!clyde!att!rutgers!apple!vsi1!wyse!mips!rogerk
From: rogerk@mips.COM (Roger B.A. Klorese)
Newsgroups: news.admin
Subject: Re: Is uunet a security hole?
Keywords: uucp logins security
Message-ID: <10445@admin.mips.COM>
Date: 31 Dec 88 07:10:57 GMT
References: <10420@rpp386.Dallas.TX.US> <44465@beno.seismo.CSS.GOV> <300@ssbn.WLK.COM> <44466@beno.seismo.CSS.GOV>
Reply-To: rogerk@mips.COM (Roger B.A. Klorese)
Organization: MIPS Computer Systems, Sunnyvale, CA
Lines: 13

In article <44466@beno.seismo.CSS.GOV> rick@seismo.CSS.GOV (Rick Adams) writes:
>If uutry allows people without normal read access (i.e. use the access
>system call on the System file) to run uucico with debugging, then it
>is badly broken and should be fixed. The BSD uucico fixed this
>many years ago.

If I remember correctly, it allows debugging but prints ??????? for the
chat script, which seems like a reasonable approach.
-- 
Roger B.A. Klorese                               MIPS Computer Systems, Inc.
{ames,decwrl,prls,pyramid}!mips!rogerk	                  928 E. Arques Ave.
rogerk@mips.COM (rogerk%mips.COM@ames.arc.nasa.gov)     Sunnyvale, CA  94086
I don't think we're in toto anymore, Kansas.                 +1 408 991-7802