[14990] in bugtraq
Re: "gdm" remote hole
daemon@ATHENA.MIT.EDU (Thomas Biege)
Mon May 22 16:16:34 2000
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.4.05.10005221949380.4896-100000@Galois.suse.de>
Date: Mon, 22 May 2000 19:53:13 +0200
Reply-To: Thomas Biege <thomas@SUSE.DE>
From: Thomas Biege <thomas@SUSE.DE>
X-To: bugtraq@securityfocus.com
To: BUGTRAQ@SECURITYFOCUS.COM
Hi.
Just a short note:
We ship gdm with "Enable=0", so we are not vulnerable to this kind of
attack.
Older SuSE releases, which ship with gdm 1.x, have "Enable" set to 1
but seem not to be vulnerable by this bug.
Bye,
Thomas
--
Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg
E@mail: thomas@suse.de Function: Security Support & Auditing
"lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka"
Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47
