rang@cpsin3.cps.msu.edu (Anton Rang) (11/17/88)
Now that there's all this interesting security discussion going on in news.sysadmin (which isn't really the "right" place for it), what about reviving the "comp.security" idea? It seems that there is quite a bit of interest in it--at the moment, at least. And I certainly hope the discussions won't die down (too much) with time as people get complacent (maybe as the problems are fixed, though). There's been a lot of argument about posting security problems, since "crackers" might see them before sysadmins have time to do anything about them. Well, we got one already (admittedly not present in most systems); the virus's "| sed" trick can be figured out in under half an hour by anyone halfway familiar with sendmail, too. If somebody finds a problem which they believe isn't appropriate for posting, they could always send it to one of the mailing lists instead. What do people think? I'd be willing to take a vote on it, but I'll be gone most of December. Maybe in January, if it hasn't been created by then and there's enough interest.... Anton +---------------------------+------------------------+----------------------+ | Anton Rang (grad student) | "UNIX: Just Say No!" | "Do worry...be SAD!" | | Michigan State University | rang@cpswh.cps.msu.edu | | +---------------------------+------------------------+----------------------+