Some people might have seen the article on Slashdot regarding the security vulnerabilities of certain terminal emulation software, most worryingly Eterm, that allow any files the user has write access for, to be overwritten.
(Slashdot article here: http://slashdot.org/article.pl?sid=03/03/01/2144223&mode=nested&tid=172 , and original paper here: http://www.digitaldefense.net/labs/papers/Termulation.txt )
Apparently it is fixed in 0.9.2 (!!! - xterm has been fixed since X11R5), but since the Fink package is maintainerless at the moment it is in limbo at 0.9.
As an aside, I am really glad I did not install syslog-ng. We were setting up a friend's PC with Gentoo and, being Gentoo, it offered 4 syslog daemons including the aforementioned. It does not strip escape sequences from its output :p
Regards,
Michel
--
Housework can kill you if done right.
-- Erma Bombeck------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Fink-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/fink-devel
