From owner-freebsd-hackers  Wed Aug 30 13:19:30 1995
Return-Path: hackers-owner
Received: (from majordom@localhost)
          by freefall.FreeBSD.org (8.6.11/8.6.6) id NAA28448
          for hackers-outgoing; Wed, 30 Aug 1995 13:19:30 -0700
Received: from godzilla.zeta.org.au (godzilla.zeta.org.au [203.2.228.34])
          by freefall.FreeBSD.org (8.6.11/8.6.6) with ESMTP id NAA28442
          for <freebsd-hackers@freefall.FreeBSD.org>; Wed, 30 Aug 1995 13:19:22 -0700
Received: (from bde@localhost) by godzilla.zeta.org.au (8.6.9/8.6.9) id GAA20319; Thu, 31 Aug 1995 06:17:43 +1000
Date: Thu, 31 Aug 1995 06:17:43 +1000
From: Bruce Evans <bde@zeta.org.au>
Message-Id: <199508302017.GAA20319@godzilla.zeta.org.au>
To: kuku@gilberto.physik.rwth-aachen.de, terry@Artisoft.com
Subject: Re: *READ THIS* snapshot fixes security hole *READ THIS* (fwd)
Cc: freebsd-hackers@freefall.FreeBSD.org
Sender: hackers-owner@FreeBSD.org
Precedence: bulk

>> > Here are the files in /bin and /sbin which call syslog()
>> > 
>> > BIN
>> > ./date/date.c
>> > 
>> > SBIN
>> > ./shutdown/shutdown.c
>> > ./savecore/savecore.c
>> > ...

>This is silly (and the list is incomplete -- you see the CERT advisory
>target program listed there at all?  8-)).

I think they're worrying about the statically linked binaries that
wouldn't be fixed by installing new shared libraries.

Bruce