Newsgroups: comp.unix.sysv386
Path: utzoo!utgpu!watserv1!watmath!mks.com!eric
From: eric@mks.com (Eric Gisin)
Subject: More security bugs
Organization: Mortice Kern Systems Inc., Waterloo, Ontario, CANADA
Date: Mon, 25 Feb 91 20:46:07 GMT
Message-ID: <1991Feb25.204607.13455@mks.com>

I found another security bug.
This one is only in Interactive UNIX 2.2,
and lets you make /bin and /etc writable.

I'm not going to post details, but instead call on Interactive
and all other System V/386 vendors to post to this newsgroup
instructions for reporting serious bugs, and a promise that
serious bugs reports will be acknowledged.

I have reported other serious bugs (cause crashes) to Interactive.
We don't have any support contract, but they did not even acknowledge
that they received the bug reports.

	Eric Gisin, Mortice Kern Systems, <eric@mks.com>
