From owner-freebsd-security  Sat May  8  7:11: 1 1999
Delivered-To: freebsd-security@freebsd.org
Received: from point.osg.gov.bc.ca (point.osg.gov.bc.ca [142.32.102.44])
	by hub.freebsd.org (Postfix) with ESMTP
	id B5E5D152DE; Sat,  8 May 1999 07:10:56 -0700 (PDT)
	(envelope-from cy@cschuber.net.gov.bc.ca)
Received: (from daemon@localhost)
	by point.osg.gov.bc.ca (8.8.7/8.8.8) id HAA15076;
	Sat, 8 May 1999 07:11:29 -0700
Received: from cschuber.net.gov.bc.ca(142.31.240.113), claiming to be "cwsys.cwsent.com"
 via SMTP by point.osg.gov.bc.ca, id smtpda15072; Sat May  8 07:11:25 1999
Received: (from uucp@localhost)
	by cwsys.cwsent.com (8.9.3/8.9.1) id HAA39550;
	Sat, 8 May 1999 07:10:26 -0700 (PDT)
Message-Id: <199905081410.HAA39550@cwsys.cwsent.com>
Received: from localhost.cwsent.com(127.0.0.1), claiming to be "cwsys"
 via SMTP by localhost.cwsent.com, id smtpdt39546; Sat May  8 07:10:16 1999
X-Mailer: exmh version 2.0.2 2/24/98
Reply-To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
X-OS: FreeBSD 2.2.8-RELEASE
X-Sender: cy
To: chris@calldei.com
Cc: "Jordan K. Hubbard" <jkh@zippy.cdrom.com>,
	Mike Smith <mike@smith.net.au>, Seth <seth@freebie.dp.ny.frb.org>,
	freebsd-stable@FreeBSD.ORG, security@FreeBSD.ORG, jamie@exodus.net
Subject: Re: FreeBSD 3.1 remote reboot exploit (fwd) 
In-reply-to: Your message of "Mon, 03 May 1999 22:51:32 CDT."
             <19990503225131.I10291@holly.dyndns.org> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Sat, 08 May 1999 07:10:15 -0700
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <19990503225131.I10291@holly.dyndns.org>, Chris Costello 
writes:
> On Mon, May 3, 1999, Jordan K. Hubbard wrote:
> > > I have to say that Jamie really let us down by not running a raw 
> > > tcpdump alongside the second targetted machine here.  Any chance of 
> > > provoking these people into "demonstrating" the exploit on a machine, 
> > > while another connected to the same wire is running
> > 
> > I'd say he or whomever first reported this to bugtraq let us down even
> > more by releasing an "advisory" in such an unknown and unverifyable
> > state.  By doing so, all they've done is hand ammunition to the FUD
> > corps and given us no reasonable chance to respond since the advisory
> 
>    I get the impression that that was the whole point of the
> bugtraq post, to give us more grief.

How do we know that it's even true?  For all we know it could just be 
lie to stir the pot.


Regards,                       Phone:  (250)387-8437
Cy Schubert                      Fax:  (250)387-5766
Open Systems Group          Internet:  Cy.Schubert@uumail.gov.bc.ca
ITSD                                   Cy.Schubert@gems8.gov.bc.ca
Province of BC
                      "e**(i*pi)+1=0"





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message