Path: utzoo!utgpu!watmath!clyde!att!rutgers!cmcl2!rocky8!cucard!ccnysci!dan
From: dan@ccnysci.UUCP (Dan Schlitt)
Newsgroups: comp.unix.wizards
Subject: Re: Re: The Internet Virus--Another issue
Summary: Still waiting on Celerity, and what about finger and ftp
Message-ID: <1026@ccnysci.UUCP>
Date: 30 Nov 88 15:02:51 GMT
References: <17849@glacier.STANFORD.EDU> <4470010@hpindda.HP.COM>
Reply-To: dan@ccnysci.UUCP (Dan Schlitt)
Organization: City College of New York
Lines: 22

In article <4470010@hpindda.HP.COM> marcel@hpindda.HP.COM (Marcel Burlet) writes:
:/ kai@uicsrd.csrd.uiuc.edu /  8:44 pm  Nov 17, 1988 /
:>(Some) other manufacturers are doing something about it.
:>Sequent mailed a shell script to patch sendmail to disable debug.
:>Alliant did one better.  They have debug disabled in the sendmail they
:>distribute.
:
:HP also has debug disabled in the distribution.  (Guess when I found this
:out.  Right, *after* getting the scare of my life !)
:
I'm still waiting for Celerity's new parent to do something.

But there is really more to this than sendmail debug.  After a bit of
fussing I got adb to fix sendmail on the Celerity.  I haven't seen a
method for using adb to fix fingerd and ftpd.  They need fixing too.
Before patting too many vendors on the back for fixing things (or
distributing safe versions) let's see them fix the harder problems.
-- 
Dan Schlitt                        Manager, Science Division Computer Facility
dan@ccnysci                        City College of New York
dan@ccnysci.bitnet                 New York, NY 10031
                                   (212)690-6868