peter@ficc.uu.net (Peter da Silva) (11/10/88)
It's been nearly 7 years now since I was at Berkeley, and 4.1 was the bug gun back then, but I happen to have a copy of the 4.2 BSD manuals from 1983. ftpd, BUGS: The anonymous account is inherently dangerous and should be avoided when possible. rexecd, BUGS: Indicating "Login Incorrect" as opposed to "Password Incorrect" is a security breach which allows people to probe a system for users with null passwords" rlogind, rshd, BUGS: The authentication procedure used here assumes the integrity of each client machine and the connecting medium. This is insecure, but is useful in an "open" environment. tunefs, BUGS:-> You can tune a file system, but you can't tune a fish. Perhaps someone could comment on how many of these BUGS entries remain in the latest and greatest 4.3 manual. -- Peter da Silva `-_-' Ferranti International Controls Corporation "Have you hugged U your wolf today?" uunet.uu.net!ficc!peter Disclaimer: My typos are my own damn business. peter@ficc.uu.net