Subject: Re: [email@example.com: local root compromise in openbsd 3.0 and below]
From: Herb Peyerl <firstname.lastname@example.org>
Date: 04/11/2002 13:22:09
Herb Peyerl <email@example.com> wrote:
> Jan Schaumann <firstname.lastname@example.org> wrote:
> > I just can't believe that /usr/bin/mail on OpenBSD would not behave the
> > same way -- even linux's mail(1) does indicate that it only interprets ~
> > in interactive mode...
> >From memory, it wouldn't be the first time one of their audits had
> created a hole.
Clarification: "If I remember correctly, it wouldn't be the first time
a security audit created a hole. But I could be wrong."