At 12:39 PM 1/20/01 +0530, Syed Khader Vali wrote:
>On Sat, 20 Jan 2001, Devdas Bhagat wrote:
> > BZZZZZZZT, thank you for playing.
> > A one byte buffer exploit was discovered int OpenBSD's ftpd code this
> > year. Its on Bugtraq.
>BZZZZZZZZ, Thank you for playing the game. You have been exterminated.
>:-) Well, I dunno about the exploit in the Code, but OpenBSD site does
>make the claim of three years still.
>The message verbatim
>"Three years without a remote hole in the default install!"
so the buffer exploit is a local exploit rather than a remote exploit? The
openbsd guys are that way technically right in retaining that claim :)
--
Suresh Ramasubramanian [ <> ] mallet <@> efn.org
EMail Sturmbannfuhrer, Lower Middle Class Sysadmin
----------------------------------------------
LIH is all for free speech. But it was created
for a purpose. Violations of the rules of
this list will result in stern action.
