From owner-freebsd-security  Fri Dec 12 01:44:46 1997
Return-Path: <owner-freebsd-security>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id BAA07153
          for security-outgoing; Fri, 12 Dec 1997 01:44:46 -0800 (PST)
          (envelope-from owner-freebsd-security)
Received: from serenity.mcc.ac.uk (serenity.mcc.ac.uk [130.88.200.93])
          by hub.freebsd.org (8.8.7/8.8.7) with SMTP id BAA07144
          for <security@freebsd.org>; Fri, 12 Dec 1997 01:44:43 -0800 (PST)
          (envelope-from 96092650@haac.ac.uk)
Received: from sun1.haac.ac.uk [193.61.96.250] 
	by serenity.mcc.ac.uk with smtp (Exim 1.73 #3)
	id 0xgReC-0000FG-00; Fri, 12 Dec 1997 09:44:40 +0000
Received: from adams.haac.ac.uk by sun1.haac.ac.uk (4.1/SMI-4.1)
	id AA03691; Fri, 12 Dec 97 08:28:59 GMT
Received: from ADAMS/SpoolDir by adams.haac.ac.uk (Mercury 1.21);
    12 Dec 97 09:54:44 0000
Received: from SpoolDir by ADAMS (Mercury 1.30); 12 Dec 97 09:54:35 0000
From: "Jim O'Neill" <96092650@haac.ac.uk>
Organization: Harper Adams College
To: security@freebsd.org
Date: Fri, 12 Dec 1997 09:54:34 BST
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7BIT
Subject: Re: FreeBSD Security 
Reply-To: 96092650@haac.ac.uk
Priority: normal
X-Mailer: Pegasus Mail for Windows (v2.42a)
Message-Id: <2206A6F3BB3@adams.haac.ac.uk>
Sender: owner-freebsd-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

To:            Charlie Roots <osiris2002@yahoo.com>
Date:          Fri, 12 Dec 1997 09:53:26 BST

> I understand the significance of CERT and also I highly appreciate the
> FreeBSD team and their efforts, but two things to notice here:
> 
> 1. They did not tell us what that hacker did to BREAK that Very Secure
> system, and is that hole unfixed, as current, and that's why everybody
> is keeping it undercover ?

IMHO
Surely, the best way to do it, is _NOT_ to revel the methodology used 
until a patch or fix is available, ????

Jim
MM1AKO/M-TF108NB
96092650@haac.ac.uk
 
 
----------------+-------------------------------+
Jim             |   96092650@haac.ac.uk         |
[MM1AKO]        |   jim@earthalliance.com       |
[Team OS/2]     +-------------------------------+
                                                |
Berwick-upon-Tweed                              |
------------------------------------------------+