From owner-freebsd-security Wed Feb 5 17:47:19 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id RAA03771 for security-outgoing; Wed, 5 Feb 1997 17:47:19 -0800 (PST) Received: from nightmare.dreamchaser.org (nightmare.dreamchaser.org [206.230.42.65]) by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id RAA03766 for ; Wed, 5 Feb 1997 17:47:12 -0800 (PST) Received: from imagination (imagination.dreamchaser.org [206.230.42.83]) by nightmare.dreamchaser.org (8.6.12/8.6.12) with SMTP id SAA26680; Wed, 5 Feb 1997 18:45:47 -0700 Message-ID: <32F939C2.172F@dreamchaser.org> Date: Wed, 05 Feb 1997 18:54:10 -0700 From: Gary Aitken Reply-To: garya@dreamchaser.org X-Mailer: Mozilla 3.01 (WinNT; I) MIME-Version: 1.0 To: Karl Denninger CC: "Sean J. Schluntz" , freebsd-security@freebsd.org Subject: Re: 2.1.6+++: crt0.c CRITICAL CHANGE References: <199702060116.TAA21953@Jupiter.Mcs.Net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Karl Denninger wrote: > Uh, excuse me, but the EXPLOIT has been in ACTIVE use for *TWO MONTHS* now. > > Its *NOT* new. It is being *ACTIVELY* used by the hacker contingent. > Therefore, hiding *ANYTHING* at this point serves no purpose. > > How can I possibly "hurt" things at this point... It seems to me that while obviously some hackers are using the exploit, there is a very real possibility that some are not yet aware of it. It would seem wise to delay publicly posting it for a longer period of time. -- Gary Aitken garya@dreamchaser.org (personal)