The 'Security Digest' Archives (TM)

Archive: About | Browse | Search | Contributions | Feedback
Site: Help | Index | Search | Contact | Notices | Changes

ARCHIVE: 'Phage List' - Archives (1988 - 1989)
DOCUMENT: phage #052 [NNTP vulnerability, and Re: Disassembled virus?] (1 message, 708 bytes)
NOTICE: recognises the rights of all third-party works.


From: Edward Vielmetti <>
To: phage
Date: Sat 16:02:56 05/11/1988 EST
Subject: NNTP vulnerability, and Re: Disassembled virus?
References: [Thread Prev: 400] [Thread Next: 055] [Message Prev: 051] [Message Next: 054]

no list is secure, especially in the presence of broken mailers.
If you believe otherwise then you don't read mailer-daemon mail.

Postel has called for a Virus RFC.  I think that's a fine idea.
I would like to see a copy of the virus myself, since there are
a lot of infectable machines on this campus that weren't hit
for one reason or another, and more machines coming on line
every day.

If we want a secure meeting, I would argue that the only way
to do it is in person.  Perhaps the internet engineering task
force is the appropriate body to figure out a meeting time and
place and invite people to come.

I am concerned that the next attack will hit the usenet news
network - there are a lot of machines running NNTP in the world.
Are there any known NNTP security holes, and how can I stop them up?