*BSD News Article 48338


Return to BSD News archive

Path: sserve!euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!simtel!news.kei.com!news.mathworks.com!gatech!howland.reston.ans.net!swrinde!cs.utexas.edu!news.cs.utah.edu!news.provo.novell.com!park.uvsc.edu!usenet
From: Terry Lambert <terry@cs.weber.edu>
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: FreeBSD mention in RISKS.digest
Date: 3 Aug 1995 06:19:32 GMT
Organization: Utah Valley State College, Orem, Utah
Lines: 24
Message-ID: <3vpppk$c6d@park.uvsc.edu>
References: <3vgh3q$o21@anshar.shadow.net>
NNTP-Posting-Host: hecate.artisoft.com

dwhite@anshar.shadow.net (Don Whiteside) wrote:
] The Washington Post Monday business section has a regular "shorts"
] called "Digital Flubs", in which they report on interesting goofs.
] Many of them appear to be culled (without attribution) from RISKS.
] 
] The June 26 edition reads as follows:
] 	A piece of security software widely used on computer networks has
] 	a hole in it.  [CERT] said it has distributed instructions on how
] 	to correct the problem in FreeBSD, a program created by a software
] 	engineer in the Netherlands.  In some circumstances, the hole lets
] 	people tapping into a computer see and alter information that should
] 	be off-limits to them.  FreeBSD is an "enhancement" to S/Key, a
] 	program that controls password access to networked computers.
] 	S/Key itself does not have the problem.

Wanna get some real press, Jordan?  Ask the WP to print a
correction, and tell what FreeBSD really is.


                                        Terry Lambert
                                        terry@cs.weber.edu
---
Any opinions in this posting are my own and not those of my present
or previous employers.