Date: Fri, 6 Oct 2000 00:59:10 -0700 From: Alfred Perlstein <bright@wintelcom.net> To: Andre Albsmeier <andre.albsmeier@mchp.siemens.de> Cc: cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/usr.bin/finger finger.c Message-ID: <20001006005910.C27736@fw.wintelcom.net> In-Reply-To: <20001006090131.A61051@curry.mchp.siemens.de>; from andre.albsmeier@mchp.siemens.de on Fri, Oct 06, 2000 at 09:01:31AM %2B0200 References: <ru@FreeBSD.org> <200010051715.e95HFVn34590@hak.lan.Awfulhak.org> <20001005135833.A87853@citusc17.usc.edu> <20001005142209.G27736@fw.wintelcom.net> <20001006074832.A9078@curry.mchp.siemens.de> <20001005233620.B27736@fw.wintelcom.net> <20001006090131.A61051@curry.mchp.siemens.de>
next in thread | previous in thread | raw e-mail | index | archive | help
* Andre Albsmeier <andre.albsmeier@mchp.siemens.de> [001006 00:01] wrote: > On Thu, 05-Oct-2000 at 23:36:20 -0700, Alfred Perlstein wrote: > > > > In the form it was in the PR, ie "huge gaping security hole the > > size of Montana" it was entirely useless. > > > > I should have said "useless/dangerous", not all useless patches > > are dangerous but all dangerous patches are useless until corrected. > > In this case, it would have been enough to write > > 3) realize how (f*cking) dangerous it is > > :-). I read your words as if you tried to say that the whole thing > is useless but, anyway, this has been cleared out now. If one had weighed the value of being able to finger files on a remote machine versus the potential security implications of the change i'm sure it would not have been added. -- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001006005910.C27736>