[2782] in Release_7.7_team
AUI security audit
daemon@ATHENA.MIT.EDU (andrew m. boardman)
Mon Jun 11 22:27:58 2001
Date: Mon, 11 Jun 2001 22:27:53 -0400
Message-Id: <200106120227.WAA01902@pothole.mit.edu>
From: "andrew m. boardman" <amb@MIT.EDU>
To: release-team@mit.edu
So far as I can remember we've talked abstractly about AUI and security
but that's about all. I *think* that there are no real new security
issues with AUI because nothing listens on an inet port by default, but
I'd still like to get a handle on whether this is really true and how
badly we're left open to local attacks.
Perhaps we can talk about this on Wednesday. Perhaps I'll do something
formalish and write it up when I get back.