Date: Thu, 16 Sep 1999 03:22:20 +0200 From: Eivind Eklund <eivind@FreeBSD.ORG> To: Gregory Carvalho <GregoryC@stcinc.com> Cc: FreeBSD-security@FreeBSD.ORG Subject: Re: FreeBSD-SA-99:01 File Flags and Man-In-The-Middle Attack Message-ID: <19990916032220.K5255@bitbox.follo.net> In-Reply-To: <37DFBE91.A07AAF8B@stcinc.com>; from Gregory Carvalho on Wed, Sep 15, 1999 at 08:43:13AM -0700 References: <37DFBE91.A07AAF8B@stcinc.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Sep 15, 1999 at 08:43:13AM -0700, Gregory Carvalho wrote: > It appears to me that this exploit can be avoided by logging in as root > on all virtual terminals and immediately logging back out. Does my > theory sound correct? No. It sounds totally and utterly wrong. Apply the patches (the rc scripts and the kernel) and you should be fine. Eivind. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990916032220.K5255>