Subject: Re: [ local root compromise in openbsd 3.0 and below]
To: <>
From: Herb Peyerl <>
List: tech-security
Date: 04/11/2002 13:22:09
Herb Peyerl <>  wrote:
 > Jan Schaumann <>  wrote:
 >  > I just can't believe that /usr/bin/mail on OpenBSD would not behave the
 >  > same way -- even linux's mail(1) does indicate that it only interprets ~
 >  > in interactive mode...
 > >From memory, it wouldn't be the first time one of their audits had
 > created a hole.

Clarification:  "If I remember correctly, it wouldn't be the first time
a security audit created a hole. But I could be wrong."