[66875] in North American Network Operators' Group
Re: Misplaced flamewar... WAS: RE: in case nobody else noticed it,
daemon@ATHENA.MIT.EDU (Dave Temkin)
Wed Jan 28 15:23:42 2004
Date: Wed, 28 Jan 2004 15:23:06 -0500 (EST)
From: Dave Temkin <dave@ordinaryworld.com>
To: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
>>: Also, for reference to other people - the preview pane does *not*
>>allow
>>: the execution of attachments unless they're double-clicked on and
>>: acknowledged. Again - we're not talking about another OS or Outlook
>>: exploit, only a stupid user exploit.
>The "feature" has been fixed but it **did** at one point run apps.
>James Edwards
>Routing and Security Administrator
>jamesh@cybermesa.com
>At the Santa Fe Office: Internet at Cyber Mesa
>Store hours: 9-6 Monday through Friday
>505-988-9200 SIP:1(747)669-1965
Right, and at multiple points bind and sendmail allowed the execution of
code from remote systems without the system owner interacting at all.
What's that got to do with today?
--
David Temkin
