Subject: Re: [venglin@freebsd.lublin.pl: local root compromise in openbsd 3.0 and below]
To: <>
From: Herb Peyerl <hpeyerl@beer.org>
List: tech-security
Date: 04/11/2002 13:22:09
Herb Peyerl <hpeyerl@beer.org>  wrote:
 > Jan Schaumann <jschauma@netbsd.org>  wrote:
 >  > I just can't believe that /usr/bin/mail on OpenBSD would not behave the
 >  > same way -- even linux's mail(1) does indicate that it only interprets ~
 >  > in interactive mode...
 > 
 > >From memory, it wouldn't be the first time one of their audits had
 > created a hole.

Clarification:  "If I remember correctly, it wouldn't be the first time
a security audit created a hole. But I could be wrong."