Re: Linux GTKicq Security Flaw (thought u should know)

To: Debian Userslist <debian-user@lists.debian.org>
Cc: gtkicq@packages.debian.org
Subject: Re: Linux GTKicq Security Flaw (thought u should know)
From: martin@internet-treff.uni-koeln.de (Martin Bialasinski)
Date: 31 Dec 1998 17:58:44 +0100
Message-id: <[🔎] m0zvlQq-000NmuC@haitech.martin.home>
In-reply-to: AJ's message of "Thu, 31 Dec 1998 11:43:26 -0500"
References: <[🔎] 368BA9AE.40FE86B@intergrafix.net>

>> "A" == AJ  <artlu@intergrafix.net> writes:

A> cat gtkicqrc it listed my password i use for ICQ which i also used
A> for my own root password!! they were the only places i used
A> it.. needless to say if u use GTKicq make sure u set permissions on
A> /home/user/.icq/gtkicqrc to only the user..

This was fixed in gtkicq 0.57-3 uploaded to frozen and unstable.

Though it had IMHO the wrong priority (low, should be high) and was
not announced on debian-security-announce.

Stephen, what do you think? At least make up the announcement?

Ciao,
	Martin

Reply to:

References:
- Linux GTKicq Security Flaw (thought u should know)
  - From: AJ <artlu@intergrafix.net>

Prev by Date: Re: Netscape Communicator v.5 won't run ?
Next by Date: Re: Linux GTKicq Security Flaw (thought u should know)
Previous by thread: Linux GTKicq Security Flaw (thought u should know)
Next by thread: Re: Linux GTKicq Security Flaw (thought u should know)
Index(es):
- Date
- Thread