[4229] in WWW Security List Archive
RE: Re[2]: Return Receipts and Security
daemon@ATHENA.MIT.EDU (Steve Wray)
Fri Jan 31 22:46:19 1997
From: Steve Wray <steve.wray@vuw.ac.nz>
To: "www-security@ns2.rutgers.edu" <www-security@ns2.rutgers.edu>
Date: Sat, 1 Feb 1997 14:48:38 +1300
Errors-To: owner-www-security@ns2.rutgers.edu
-----BEGIN PGP SIGNED MESSAGE-----
Pat_Noziska@gatekeeper.atlas.com wrote:
[snip]
> So I still can't see how "delivery notification" can compromise security. I'd
> love to hear from anyone as to why they'd disagree ...
I'd have thought that this would come under the same heading as
finger as a security risk, in that it (finger) shows that a user with that login
exists on the target system.
- --
I used to think that my brain was the most wonderful organ in my body.
Then I realised who had been telling me this...
--- Emo Phillips
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: cp850
iQCVAwUBMvKvA/Z4xihx44/hAQGn/wP/egINdXv+p2fMAoule1CFDrt4NTHEJVJS
bijrXkz90CXEm9UUBKCVSWR9/CgdszJrit2EeBEf+XoWd/pcFxiJiB6QV/HOT38t
JiNPK28KxsuLUZaeovzZTDq0VW54tz6YyAQZyAuJgx/7iYGSd0TtaKN6g1BGGAgz
+VpMZkaza6g=
=UIZD
-----END PGP SIGNATURE-----
