From owner-freebsd-security  Tue Jan 23 13:20:31 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id NAA17702
          for security-outgoing; Tue, 23 Jan 1996 13:20:31 -0800 (PST)
Received: from precipice.shockwave.com (precipice.shockwave.com [171.69.108.33])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id NAA17690
          for <freebsd-security@FreeBSD.org>; Tue, 23 Jan 1996 13:20:19 -0800 (PST)
Received: from localhost.shockwave.com (localhost.shockwave.com [127.0.0.1]) by precipice.shockwave.com (8.7.3/8.7.3) with SMTP id NAA02408; Tue, 23 Jan 1996 13:18:58 -0800 (PST)
Message-Id: <199601232118.NAA02408@precipice.shockwave.com>
To: dk+@ua.net
cc: freebsd-security@FreeBSD.org
Subject: Re: rxvt security hole - proposed fix + more 
In-reply-to: Your message of "Tue, 23 Jan 1996 13:00:56 GMT."
             <199601231300.PAA00906@dog.farm.org> 
Date: Tue, 23 Jan 1996 13:18:58 -0800
From: Paul Traina <pst@shockwave.com>
Sender: owner-security@FreeBSD.org
Precedence: bulk

  And yes I know rxvt have to be fixed to drop its privileges when using
  -print-pipe anyway.
  
Correction, rxvt has been fixed to drop its privileges when they're not
required (which is when editing utmp).