From owner-freebsd-security Tue Jul 21 10:07:52 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA28747 for freebsd-security-outgoing; Tue, 21 Jul 1998 10:07:52 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from mercury.jorsm.com (mercury.jorsm.com [207.112.128.9]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA28742 for ; Tue, 21 Jul 1998 10:07:51 -0700 (PDT) (envelope-from jer@jorsm.com) Received: from localhost (jer@localhost) by mercury.jorsm.com (8.8.7/8.8.7) with SMTP id MAA11965; Tue, 21 Jul 1998 12:07:21 -0500 (CDT) Date: Tue, 21 Jul 1998 12:07:21 -0500 (CDT) From: Jeremy Shaffner To: Brett Glass cc: Paul Hart , security@FreeBSD.ORG Subject: Re: The 99,999-bug question: Why can you execute from the stack? In-Reply-To: <199807202328.RAA26899@lariat.lariat.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 20 Jul 1998, Brett Glass wrote: > At 02:57 PM 7/20/98 -0600, Paul Hart wrote: > > >Consider Bugtraq and the other popular security mailing lists as required > >reading. Absolutely. None of these holes would have taken you by > >surprise if you had diligently read these lists. > > Not necessarily. An exploit can be used long before it hits the lists. > > Not not necessarily. Absolutely. If you were ware of it when the rest of us were, you would have had it fixed. Period. -===================================================================- Jeremy Shaffner JORSM Internet Senior Technical Support Northwest Indiana's Premium jer@jorsm.com Internet Service Provider support@jorsm.com http://www.jorsm.com -===================================================================- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message