Bugtraq mailing list archives

Re: rshd gives away usernames

From: Todd.Miller () COURTESAN COM (Todd C. Miller)
Date: Fri, 13 Jun 1997 20:58:39 -0600


In message <Pine.SUN.3.96.970613105441.13936A-100000 () aimnet net>
        so spake Eric (eric):

Well sendmail has always done the more or less the same thing.


But you can turn that off on sendmail...

 - todd

Current thread:

Netscape Exploit, (continued)
- - - Netscape Exploit root (Jun 14)
    - Bug in SGI's /cgi-bin/handler Razvan Dragomirescu (Jun 14)
    - Re: Bug in SGI's /cgi-bin/handler Yaron Yanay (Jun 15)
    - sendmail 8.8.6 released Eric Allman (Jun 14)
    - Re: Netscape Exploit Roger Espel Llima (Jun 14)
    - Re: Netscape Exploit Micah Brandon (Jun 14)
    - Re: Netscape Exploit Manoj Kasichainula (Jun 15)
    - rshd gives away usernames David Holland (Jun 13)
    - Re: rshd gives away usernames Erik Troan (Jun 13)
    - Re: rshd gives away usernames Eric (Jun 13)
    - Re: rshd gives away usernames Todd C. Miller (Jun 13)
    - Re: rshd gives away usernames Alan Brown (Jun 14)
    - Changing default UMASK for all daemons Dax Kelson (Jun 13)
    - Re: Changing default UMASK for all daemons Joe Traister (Jun 14)
    - Re: Changing default UMASK for all daemons Michael Helm (Jun 14)
    - Re: Changing default UMASK for all daemons Tomasz R. Surmacz (Jun 16)
    - Re: rshd gives away usernames Christophe Kalt (Jun 14)
    - Netscape update on their web site Robert Watson (Jun 13)
    - Re: Netscape update on their web site Manoj Kasichainula (Jun 13)
    - Netscape Exploit... with technical details. Rusty Conover (Jun 13)
    - Security Bulletins Digest Aleph One (Jun 13)

(Thread continues...)