Monique Y. Mudama wrote:
On 2004-08-07, Alvin Oga penned:First:
On Sat, 7 Aug 2004, John Summerfield wrote:
I think M was aiming at list members whose aim isa little sloppy.
/dev/null is fine: if it's delivered to their own machine perhaps
they will wake up to what tbey're doing.
they can mail to &halt;@their-domain.com too
sometimes /sbin and /usr/sbin is world executable too
I don't know if that would even have a prayer of working, but I don't want to do anything malicious; I'm just sick of getting duplicates!
/sbin and /usr/sbin are world-executable on every Linux system I've used, and on my Mac (OSX). Include in my experience Mandrake, RHL, SuSE 9.0, Debian and Progeny.
Think: How many of you have used the ifconfig command: /sbin/ifconfig to check your network configuration?
/usr/sbin is the standard place for sendmail, a standard way to send email (check your kmail etc settings).
I presume Alvin thinks that sending mail to &halt;@their-domain.com might shutdown someone's system. Might.
It's pretty improbable that it would work because
a) If so, It's a pretty obvious security vuln that would have been noticed by now if it existed in any mainline software.
b) /sbin and /usr/sbin are not normally in users' paths.
c) Halting someone's computer might be inconvenient, but rarely harmful.
Note that if this could be done, Linux would be a pretty handy medium for distributing viruses and spam.
It's not impossible, but also not likely.
--
Cheers John
-- spambait [EMAIL PROTECTED] [EMAIL PROTECTED] Tourist pics http://portgeographe.environmentaldisasters.cds.merseine.nu/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
