Re: solution time for www/smtp hole
William C Fenner <fenner@herman.cmf.nrl.navy.mil>
Message-id: <9308131743.AA01027@herman.cmf.nrl.navy.mil>
To: Charles Henrich <henrich@crh.cl.msu.edu>
Cc: www-talk@nxoc01.cern.ch
Subject: Re: solution time for www/smtp hole
In-reply-to: Your message of "Fri, 13 Aug 93 13:22:25 EDT."
<9308131722.AA04889@crh.cl.msu.edu>
Date: Fri, 13 Aug 1993 13:42:59 -0400
From: William C Fenner <fenner@herman.cmf.nrl.navy.mil>
Status: RO
On Fri, 13 Aug 1993 13:22:25 -0400 (EDT) Charles Henrich wrote:
>The purpose is to stop attacks on systems. All the ports you've named are not
>widely used for their intended purpose, and as such dont present a problem
>(IMHO).
So since you don't run XFER, and none of your friends run XFER, it's a good
idea to leave open a possible security hole in the relationship between WWW
and XFER?
Bill