Date: Thu, 31 Oct 1996 22:52:38 -0700 From: Warner Losh <imp@village.org> To: Michael Hancock <michaelh@cet.co.jp> Cc: current@freebsd.org Subject: Re: /var/mail (was: re: Help, permission problems...) Message-ID: <E0vJCX0-0002gM-00@rover.village.org> In-Reply-To: Your message of "Fri, 01 Nov 1996 13:54:32 %2B0900." <Pine.SV4.3.95.961101134942.4374D-100000@parkplace.cet.co.jp> References: <Pine.SV4.3.95.961101134942.4374D-100000@parkplace.cet.co.jp>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <Pine.SV4.3.95.961101134942.4374D-100000@parkplace.cet.co.jp> Michael Hancock writes: : I would also advocate getting c2 to promote a "Hack FreeBSD" contest to : see how many security holes people can find. Just chmod s-o lpr/lpd before starting, OK? I've fixed a bunch, but there are more lurking. I'd also be leery of yelling too loudly about this. OpenBSD has a bunch of buffer overflows in setuid code that isn't lpr/lpd that has yet to be integrated into FreeBSD. I'm working on a list now, but I don't have anything concrete to share at the moment. Warner
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E0vJCX0-0002gM-00>