From owner-freebsd-security  Fri Sep 11 17:30:53 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id RAA03968
          for freebsd-security-outgoing; Fri, 11 Sep 1998 17:30:53 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from ns1.seidata.com (ns1.seidata.com [208.10.211.2])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA03956
          for <security@FreeBSD.ORG>; Fri, 11 Sep 1998 17:30:49 -0700 (PDT)
          (envelope-from mike@seidata.com)
Received: from localhost (mike@localhost)
	by ns1.seidata.com (8.8.8/8.8.5) with SMTP id UAA09453;
	Fri, 11 Sep 1998 20:29:43 -0400 (EDT)
Date: Fri, 11 Sep 1998 20:29:43 -0400 (EDT)
From: Mike <mike@seidata.com>
To: Michal Listos <mcl@mtl.pl>
cc: Hector Gonzalez Jaime <cacho@ns.iteso.mx>, security@FreeBSD.ORG
Subject: Re: fingerd exploit 
In-Reply-To: <Pine.BSF.4.00.9809112024350.18423-100000@Amnesiac.123.org>
Message-ID: <Pine.BSF.4.01.9809112028470.7944-100000@ns1.seidata.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Fri, 11 Sep 1998, Michal Listos wrote:

>      -s      Enable secure mode.  Queries without a user name are rejected and
>              forwarding of queries to other remote hosts is denied.

*ding*  The magic answer...  it seems '-s' gives you all the pluses of
secure fingerd, and it appears to be the default with -current.

	-mike


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message