The 'Security Digest' Archives (TM)

Archive: About | Browse | Search | Contributions | Feedback
Site: Help | Index | Search | Contact | Notices | Changes

ARCHIVE: 'Phage List' - Archives (1988 - 1989)
DOCUMENT: phage #105 [Re: spaf's (and other's) comments] (1 message, 442 bytes)
SOURCE: http://securitydigest.org/exec/display?f=phage/archive/105.txt&t=text/plain
NOTICE: securitydigest.org recognises the rights of all third-party works.

START OF DOCUMENT

From: "Matt Crawford" <matt@oddjob.uchicago.edu>
To: phage
Date: Mon 11:26:46 07/11/1988 EST
Subject: Re: spaf's (and other's) comments
References: [Thread Prev: 126] [Thread Next: 101] [Message Prev: 104] [Message Next: 106]

Anecdote apropos "reporting security problems does not cause them to
be fixed":  A friend at a large commercial site learned of the BSD
anonymous ftp bug a full year ago from her vendor's representative.
Not only did that vendor not fix it in subsequent releases, but the
rest of us only learned of its existence a week ago.

				Matt Crawford

END OF DOCUMENT