[6136] in Kerberos
Re: Telnet vulnerability--shared library loading
daemon@ATHENA.MIT.EDU (Lorrie Wood)
Mon Nov 6 05:39:53 1995
To: kerberos@MIT.EDU
Date: 6 Nov 1995 09:42:19 GMT
From: lorrie@mellers1.psych.berkeley.edu (Lorrie Wood)
In article <47h9cu$rhe@theke.heim2.tu-clausthal.de>,
David Werner <David.Werner@Heim2.TU-Clausthal.DE> wrote:
>
>Hallo,
>How about distributing a fixed source with it?
>May be that this binary is a faked like the Satan
>binary was.
I'd love to, if it were mine to distribute. As it is, I tried to
perform a public service by letting all and sundry know about this, after
getting a mail from Alan Cox (who replied when I sent e-mail to the
person listed as the author of the Slackware telnetd in the CERT advisory)
saying where the binary could be found.
I mean, if it were *me*, I'd pgp-sign my mail, make both elf an
a.out bins available (this one's been done...), and make source available.
But I didn't write it. All I can do is deflect the e-mail I've gotten since
(6 requests for source, one request for install help).
-- Lorrie
