Bugtraq mailing list archives
Re: 11 years of inetd default insecurity?
From: Thamer Al-Harbash <tmh () whitefang com>
Date: Sun, 7 Sep 2003 21:46:28 -0400 (EDT)
On Sat, 6 Sep 2003, 3APA3A wrote:
Dear bugtraq () securityfocus com, Well, we all blame Microsoft in insecure default configuration... Isn't it time to clean outdated code in Unix?
This has been a known problem for quite a while. In fact D. J. Bernstein already solved it with tcpserver: http://cr.yp.to/ucspi-tcp.html If you look at the bottom he points out pretty much what you pointed out. -- Thamer Al-Harbash GPG Key fingerprint: D7F3 1E3B F329 8DD5 FAE3 03B1 A663 E359 D686 AA1F "HLAGHLHALUAG (KTHANX)"
Current thread:
- 11 years of inetd default insecurity? 3APA3A (Sep 06)
- Re: 11 years of inetd default insecurity? Thamer Al-Harbash (Sep 08)
- Re: 11 years of inetd default insecurity? Dan Stromberg (Sep 08)
- Re: 11 years of inetd default insecurity? Andres Kroonmaa (Sep 10)
- Re: 11 years of inetd default insecurity? Dan Stromberg (Sep 08)
- Re: 11 years of inetd default insecurity? Dagmar d'Surreal (Sep 08)
- Re: 11 years of inetd default insecurity? Mike Hoskins (Sep 09)
- Re: 11 years of inetd default insecurity? Mike Tancsa (Sep 08)
- Re: 11 years of inetd default insecurity? Jonathan A. Zdziarski (Sep 10)
- Re: 11 years of inetd default insecurity? Greg A. Woods (Sep 10)
- Re: 11 years of inetd default insecurity? Jonathan A. Zdziarski (Sep 10)
- Re: 11 years of inetd default insecurity? Dan Harkless (Sep 09)
- Re: 11 years of inetd default insecurity? Darren Pilgrim (Sep 09)
- <Possible follow-ups>
- Re: 11 years of inetd default insecurity? Paul Szabo (Sep 08)
(Thread continues...)
- Re: 11 years of inetd default insecurity? Thamer Al-Harbash (Sep 08)