From owner-freebsd-security  Sun Jun 25 20:15:34 1995
Return-Path: security-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id UAA19811
          for security-outgoing; Sun, 25 Jun 1995 20:15:34 -0700
Received: from sequent.kiae.su (sequent.kiae.su [144.206.136.6])
          by freefall.cdrom.com (8.6.10/8.6.6) with SMTP id UAA19805
          for <security@freebsd.org>; Sun, 25 Jun 1995 20:15:30 -0700
Received: from newcom.kiae.su by sequent.kiae.su with SMTP id AA13516
  (5.65.kiae-2  for <security@freebsd.org>); Mon, 26 Jun 1995 07:10:15 +0400
Received: by newcom.kiae.su id AA13677
  (5.65.kiae-1  for security@freebsd.org); Mon, 26 Jun 1995 07:03:04 +0400
Date: Mon, 26 Jun 1995 07:03:04 +0400
Message-Id: <199506260303.AA13677@newcom.kiae.su>
To: security@freebsd.org
Subject: RSAEURO
From: "Andrey A. Chernov, Black Mage" <ache@astral.msk.su>
Organization: Olahm Ha-Yetzirah
X-Class: Fast
X-Newsreader: NN v6.4.18
Sender: security-owner@freebsd.org
Precedence: bulk


>Newsgroups: comp.security.unix
>Path: kiae!relcom!satisfy.kiae.su!demos!uunet!tcsi.tcs.com!agate!howland.reston.ans.net!cam.news.pipex.net!pipex!edi.news.pipex.net!pipex!demon!btnet!news.compulink.co.uk!cix.compulink.co.uk!usenet
>From: skapp@cix.compulink.co.uk ("Stephen Kapp")
>Subject: RSAEURO
>Message-ID: <DAo80L.K0@cix.compulink.co.uk>
>Organization: Reaper Tech.
>Date: Sat, 24 Jun 1995 09:36:20 GMT
>X-News-Software: Creaper
>Lines: 62

ANNOUNCE:- RSAEURO Version 1.00
===============================

What is RSAEURO?
----------------

RSAEURO is a cryptographic toolkit providing various functions for the use
of digital signatures, data encryption and supporting areas (PEM 
encoding, random number generation etc).  To aid compatibility with 
existing software, RSAEURO is call-compatible with RSADSI's "RSAREF(tm)" 
toolkit. RSAEURO allows non-US residents to make use of much of the 
cryptographic software previously only (legally) available in the US.

RSAEURO contains support for the following:

*    RSA encryption, decryption and key generation.  Compatible with 'RSA
     Laboratories' Public-Key Cryptography Standard (PKCS) #1.

*    Generation and verification of message digests using MD2, MD4, MD5 
and
     SHS (SHS currently not implemented in higher-level functions to
     maintain compatibility with PKCS).

*    DES encryption and decryption using CBC (1, 2 or 3 keys using
     Encrypt-Decrypt-Encrypt) and DESX(tm), RSADSI's secure DES
     enhancement.

*    Diffie-Hellman key agreement as defined in PKCS #3.

*    PEM support   support for RFC 1421 encoded ASCII data with all main
     functions.

*    Key routines implemented in assembler for speed (80386 and 680x0
     currently supported).

International Use
-----------------

IMPORTANT NOTICE:  Please do not distribute or use this software in the
US   it is 'illegal' to use this toolkit in the US, as PKP have a patent 
to public-key cryptography.  If you are a US resident, please use the 
RSAREF toolkit instead.

Ftp Sites
---------

RSAEURO can be found at

ftp://ftp.dsi.unimi.it/pub/security/crypto
ftp://ftp.ox.ac.uk/pub/crypto

Author Details
--------------

With comments and suggestions, please address them to Stephen Kapp, at
'skapp@cix.compulink.co.uk'

--------------------------------------------------------------------------
E-mail: skapp@cix.compulink.co.uk
RSAEURO Copyright (c) J.S.A.Kapp 1994-1995.
All Trademarks Acknowledged.
--------------------------------------------------------------------------

From owner-freebsd-security  Fri Jun 30 10:30:41 1995
Return-Path: security-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id KAA09512
          for security-outgoing; Fri, 30 Jun 1995 10:30:41 -0700
Received: from venere.inet.it (root@venere.inet.it [194.20.8.4])
          by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id KAA09506
          for <freebsd-security@freebsd.org>; Fri, 30 Jun 1995 10:30:38 -0700
Received: from piero.inet.it (uupiero@localhost) by venere.inet.it (8.6.10/8.6.10) with UUCP id SAA58895 for freebsd-security@freebsd.org; Fri, 30 Jun 1995 18:55:52 +0200
Received: (from piero@localhost) by piero.inet.it (8.6.12/8.6.12) id SAA01831 for freebsd-security@freebsd.org; Fri, 30 Jun 1995 18:38:30 +0200
Received: from freefall.cdrom.com (root@localhost) by piero.inet.it (8.6.12/8.6.12) with UUCP id PAA00555 for piero@piero.inet.it; Fri, 30 Jun 1995 15:20:48 +0200
Received: from magic.winnet.net (magic.winnet.net [204.215.2.2]) by venere.inet.it (8.6.10/8.6.10) with ESMTP id RAA05790 for <piero@piero.inet.it>; Thu, 29 Jun 1995 17:23:35 +0200
Received: from freefall.cdrom.com (freefall.cdrom.com [192.216.222.4]) by magic.winnet.net (8.6.12/8.6.12) with ESMTP id LAA21250 for <piero@winnet.net>; Thu, 29 Jun 1995 11:25:51 -0400
Received: from localhost (daemon@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) with SMTP id IAA27637
          ; Thu, 29 Jun 1995 08:22:36 -0700
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id IAA27426
          for hackers-outgoing; Thu, 29 Jun 1995 08:18:57 -0700
Received: from localhost.cdrom.com (localhost.cdrom.com [127.0.0.1])
          by freefall.cdrom.com (8.6.10/8.6.6) with SMTP id IAA27416
          ; Thu, 29 Jun 1995 08:18:54 -0700
Message-Id: <199506291518.IAA27416@freefall.cdrom.com>
X-Authentication-Warning: freefall.cdrom.com: Host localhost.cdrom.com didn't use HELO protocol
To: Thomas David Rivers <ponds!rivers@dg-rtp.dg.com>
cc: freebsd-hackers@freefall.cdrom.com
Subject: Re: Problem with pty's? 
In-reply-to: Your message of "Wed, 28 Jun 95 21:06:17 EDT."
             <199506290106.VAA20304@ponds.UUCP> 
Date: Thu, 29 Jun 1995 08:18:53 -0700
From: "Justin T. Gibbs" <gibbs@freefall.cdrom.com>
Sender: security-owner@FreeBSD.org
Precedence: bulk

>I've seen an interesting problem crop up with 2.0 and now with 2.0.5-RELEASE.
>
>Let's say I log on, start X, start a console Xterm and run "vi" on
>a file in it.
>
>Then, lets say I don't stop the "vi" program; but kill the X server (or
>else, the X server dies for some reason.)
>
>Then, I log back on, start another console Xterm and guess what happens...
>some of my keystrokes are going to that "vi" program that was (and still
>is, for some reason) running on the previous Xterm, and some are going
>to the shell which is now running on the pty.

I've seen this before and even posted once about it.  What's worse is
that if the previous user was root, and you log in as yourself, you 
can gain control of those sessions.  I don't know if the processes
should get hupped.  In most of the cases I've seen it, the process was
backgrounded and just spitting out output.  It seems like the programs
stdout wasn't closed properly.  This has been around since at least
2.0.

--
Justin T. Gibbs
===========================================
  Software Developer - Walnut Creek CDROM
  FreeBSD: Turning PCs into workstations
===========================================