Path: utzoo!utgpu!jarvis.csri.toronto.edu!mailrus!ames!oliveb!felix!info-ultrix
From: slouder@note.nsf.gov (Steve Loudermilk)
Newsgroups: comp.unix.ultrix
Subject: Re:  VERY Dangerous Hole ...
Message-ID: <81555@felix.UUCP>
Date: 30 Jan 89 20:47:27 GMT
Sender: info-ultrix@felix.UUCP
Reply-To: slouder@note.nsf.gov (Steve Loudermilk)
Lines: 29
Approved: zemon@felix.UUCP
Reply-Path:

Reply-to: slouder@note.nsf.gov (Steve Loudermilk)

Hi,

On 22 Dec 88, a notice was posted on this bulletin board by a
Mr. Ning Zhang in Germany announcing he had discovered a "very 
dangerous security hole in UNIX".  He said he had drafted a report 
on it. 

I was of the opinion that much more would be forthcoming if there
really was such a problem.  Nothing else has been posted concerning
this.  And I have seen nothing on other BBs which are linked to this
message.  I was ready to write it off as a false alarm.  However, other's 
in my office, and rightly so, have urged me to "close the loop" and
find out for sure.

Is there really a big problem?  Is it the same as ftp, finger,
or sendmail problems which have been handled so well by others in the
internet community?  

Excuse me if I have missed something here, but I believe such an
announcement deserves a followup explanation.  

Thanks,

----------------------------------------------------------------------
Steve Loudermilk			Internet:  slouder@note.nsf.gov
Integrated Microcomputer Systems Inc.	Phonenet:  (202) 357-9648
----------------------------------------------------------------------