Date: Thu, 16 Dec 1999 09:12:59 -0700 From: Warner Losh <imp@village.org> To: Robert Watson <robert+freebsd@cyrus.watson.org> Cc: Chris England <cengland@obscurity.org>, freebsd-security@FreeBSD.ORG Subject: Re: From BugTraq - FreeBSD 3.3 xsoldier root exploit (fwd) Message-ID: <199912161612.JAA71988@harmony.village.org> In-Reply-To: Your message of "Thu, 16 Dec 1999 09:18:00 EST." <Pine.BSF.3.96.991216091552.26813A-100000@fledge.watson.org> References: <Pine.BSF.3.96.991216091552.26813A-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <Pine.BSF.3.96.991216091552.26813A-100000@fledge.watson.org> Robert Watson writes: : So, I'm sorry, could you be specific here: was this problem reported to : security-officer@freebsd.org, or reported via a send-pr, or not reported : to us? The problem was reported to so twice. Once about a week ago, and then again just before the posting to bugtraq. The first post hit while everybody was swamped, so nothing happened. The second post was to SO just before it hit bugtraq from the bugtraq moderator and I just at that moment happened to have a free 10 minutes to look at it. : Would it be feasible for someone to go disable setuid bits in all the : games/ tree? :-) Why was xsoldier setuid? No clue why it was suid. Likely a silly high score file. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199912161612.JAA71988>