From owner-freebsd-security Wed Feb 5 17:16:57 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id RAA01983 for security-outgoing; Wed, 5 Feb 1997 17:16:57 -0800 (PST) Received: from Mailbox.mcs.com (Mailbox.mcs.com [192.160.127.87]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA01970 for ; Wed, 5 Feb 1997 17:16:48 -0800 (PST) Received: from Jupiter.Mcs.Net (karl@Jupiter.mcs.net [192.160.127.88]) by Mailbox.mcs.com (8.8.5/8.8.2) with ESMTP id TAA29642; Wed, 5 Feb 1997 19:16:46 -0600 (CST) Received: (from karl@localhost) by Jupiter.Mcs.Net (8.8.5/8.8.2) id TAA21953; Wed, 5 Feb 1997 19:16:46 -0600 (CST) From: Karl Denninger Message-Id: <199702060116.TAA21953@Jupiter.Mcs.Net> Subject: Re: 2.1.6+++: crt0.c CRITICAL CHANGE To: schluntz@pinpt.com (Sean J. Schluntz) Date: Wed, 5 Feb 1997 19:16:45 -0600 (CST) Cc: freebsd-security@freebsd.org, karl@Mcs.Net In-Reply-To: from "Sean J. Schluntz" at Feb 5, 97 05:06:45 pm X-Mailer: ELM [version 2.4 PL24] Content-Type: text Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > > I AM PART OF THE SOLUTION. > > > And yes, I WILL submit a pr on this as soon as I can find a few hours to > > do the fix, verify it, and make world to test. At the same time I post > > it to the committers I'll post it publically, and 24 hours later I post > > the exploit which takes advantage of the problem. > > This is being part of the solution? Telling the world how to hack the systems > of people who don't watch the lists or don't have enough time to patch a > network of systems? > > 24 hours is not enough time for people to get the patch implemented. You > would be personally sentencing people and their business to death by doing > this. > > Would you like it if you were sick for two days and came back to find your > network toast because someone pulled a stunt like that? > > -Sean > ---------------------------------------------------------------------- > Sean J. Schluntz Uh, excuse me, but the EXPLOIT has been in ACTIVE use for *TWO MONTHS* now. Its *NOT* new. It is being *ACTIVELY* used by the hacker contingent. Therefore, hiding *ANYTHING* at this point serves no purpose. How can I possibly "hurt" things at this point... -- -- Karl Denninger (karl@MCS.Net)| MCSNet - The Finest Internet Connectivity http://www.mcs.net/~karl | T1's from $600 monthly to FULL DS-3 Service | 99 Analog numbers, 77 ISDN, Web servers $75/mo Voice: [+1 312 803-MCS1 x219]| Email to "info@mcs.net" WWW: http://www.mcs.net/ Fax: [+1 773 248-9865] | 2 FULL DS-3 Internet links; 400Mbps B/W Internal