[806] in bugtraq
Re: CERT Advisory CA-95:02.binmail.vulnerabilities
daemon@ATHENA.MIT.EDU (Julian Assange)
Fri Jan 27 05:07:53 1995
From: Julian Assange <proff@suburbia.apana.org.au>
To: cert-advisory@cert.org
Date: Fri, 27 Jan 1995 19:18:56 +1100 (EST)
Cc: bugtraq@fc.net
In-Reply-To: <199501262234.RAA03092@delphi.cert.org> from "CERT Advisory" at Jan 26, 95 05:34:23 pm
> The CERT Coordination Center thanks Eric Allman, Wolfgang Ley, Karl
> Strickland, Wietse Venema, and Neil Woods for their contributions to
> mail.local.
Last billing there Neil, though I note its in alphabetical order. It
does seem a little thick headed that cert, in its wisdom, did not simply
refer people to several 8lgm advisories already on the subject. As for the
"mail.local" not been perfect - what are they advising? the installation of
something less that perfect as far as root-bugs are concerned?
"But mom, I'm only a little bit pregnant"
From my examinations of mail.local, its fine unless you can write to the mail
spool directory. If you can, then its raceable.
Proff
