From owner-freebsd-hackers  Fri Aug  1 18:41:08 1997
Return-Path: <owner-freebsd-hackers>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id SAA24595
          for hackers-outgoing; Fri, 1 Aug 1997 18:41:08 -0700 (PDT)
Received: from shell.futuresouth.com (shell.futuresouth.com [207.141.254.20])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id SAA24587
          for <hackers@FreeBSD.ORG>; Fri, 1 Aug 1997 18:41:04 -0700 (PDT)
Received: (from tim@localhost)
	by shell.futuresouth.com (8.8.5/8.8.5) id UAA05321;
	Fri, 1 Aug 1997 20:40:53 -0500 (CDT)
Message-ID: <19970801204053.21398@futuresouth.com>
Date: Fri, 1 Aug 1997 20:40:53 -0500
From: Tim Tsai <tim@futuresouth.com>
To: Tom Samplonius <tom@sdf.com>
Cc: Ben Black <black@zen.cypher.net>, Sergio Lenzi <lenzi@bsi.com.br>,
        hackers@FreeBSD.ORG
Subject: Re: security hole on FreeBSD 2.2.2
References: <Pine.LNX.3.91.970801202857.3568G-100000@zen.cypher.net> <Pine.BSF.3.95q.970801172516.8042C-100000@misery.sdf.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.76
In-Reply-To: <Pine.BSF.3.95q.970801172516.8042C-100000@misery.sdf.com>; from Tom Samplonius on Fri, Aug 01, 1997 at 05:26:23PM -0700
Sender: owner-freebsd-hackers@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

> On Fri, 1 Aug 1997, Ben Black wrote:
> > exactly.  i have no clue what this guy is talking about.
> 
>   Exactly.  It looks like this guy installed some bogus software, probably
> setuid to root, that has a gaping hole in it.

  Maybe he's talking about suidperl.  I seemed to remember this being a
known problem and we had disabled ours long time ago.

  Tim