Annotation of www/errata.html, Revision 1.313
1.1 deraadt 1: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML Strict//EN">
2: <html>
3: <head>
1.281 deraadt 4: <title>OpenBSD 2.8 errata</title>
1.1 deraadt 5: <link rev=made href=mailto:www@openbsd.org>
6: <meta name="resource-type" content="document">
7: <meta name="description" content="the OpenBSD CD errata page">
8: <meta name="keywords" content="openbsd,cd,errata">
9: <meta name="distribution" content="global">
1.107 deraadt 10: <meta name="copyright" content="This document copyright 1997-1998 by OpenBSD.">
1.1 deraadt 11: </head>
12:
13: <BODY BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#23238E">
14:
1.127 pauls 15: <img alt="[OpenBSD]" height=30 width=141 SRC="images/smalltitle.gif">
1.68 deraadt 16: <h2><font color=#0000e0>
1.281 deraadt 17: This is the OpenBSD 2.8 release errata & patch list:
1.94 deraadt 18:
1.96 deraadt 19: </font></h2>
20:
1.94 deraadt 21: <hr>
1.240 jason 22: <a href=stable.html>For OpenBSD patch branch information, please refer here.</a><br>
1.94 deraadt 23: <a href=errata21.html>For 2.1 errata, please refer here</a>.<br>
24: <a href=errata22.html>For 2.2 errata, please refer here</a>.<br>
1.144 deraadt 25: <a href=errata23.html>For 2.3 errata, please refer here</a>.<br>
1.176 deraadt 26: <a href=errata24.html>For 2.4 errata, please refer here</a>.<br>
1.198 deraadt 27: <a href=errata25.html>For 2.5 errata, please refer here</a>.<br>
1.232 deraadt 28: <a href=errata26.html>For 2.6 errata, please refer here</a>.<br>
1.281 deraadt 29: <a href=errata27.html>For 2.7 errata, please refer here</a>.<br>
1.94 deraadt 30: <hr>
31:
1.281 deraadt 32: <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8.tar.gz>
1.142 deraadt 33: You can also fetch a tar.gz file containing all the following patches</a>.
34: This file is updated once a day.
35:
1.240 jason 36: <p> The patches below are available in CVS via the
1.281 deraadt 37: <code>OPENBSD_2_8</code> <a href="stable.html">patch branch</a>.
1.278 ericj 38:
39: <p>
40: For more detailed information on install patches to OpenBSD, please
41: consult the <a href="./faq/faq10.html#10.14">OpenBSD FAQ</a>.
1.142 deraadt 42: <hr>
43:
1.197 deraadt 44: <dl>
1.43 deraadt 45: <a name=all></a>
1.67 deraadt 46: <li><h3><font color=#e00000>All architectures</font></h3>
1.25 deraadt 47: <ul>
1.313 ! ericj 48: <a name=ipsec_ah></a>
! 49: <li><font color=#009000><strong>023: SECURITY FIX: Mar 2, 2001</strong></font><br>
! 50: Insufficient checks in the IPSEC AH IPv4 option handling code can lead to a buffer overrun leading to a remote DoS. This option is not on by default.
! 51: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/023_ip_ah.patch">A source code patch exists which remedies the problem.</a><br>
1.311 millert 52: <a name=sudo></a>
1.312 deraadt 53: <li><font color=#009000><strong>021: SECURITY FIX: Feb 22, 2001</strong></font><br>
1.311 millert 54: There is a buffer overflow in
55: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sudo&sektion=8">sudo</a>.
56: It is not currently known whether this is exploitable.
57: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/021_sudo.patch">A source code patch exists which remedies the problem.</a><br>
58: <p>
1.310 beck 59: <a name=libwrap></a>
60: <li><font color=#009000><strong>020: IMPLEMENTATION FIX: Feb 15, 2001</strong></font><br>
61: Client side ident protocol was broken in libwrap, affecting anything using libwrap including <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcpd&sektion=8">tcpd</a>. The effect of this was that libwrap would never retrieve and log ident values from remote hosts on connections.
62: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/020_libwrap.patch">A source code patch exists which remedies the problem.</a><br>
63: <p>
1.308 jason 64: <a name=lepci></a>
65: <li><font color=#009000><strong>019: IMPLEMENTATION FIX: Jan 31, 2001</strong></font><br>
66: Fix memory allocation in the PCI LANCE driver, <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=le&sektion=4&arch=i386">le</a>. A side effect of this is that OpenBSD under VMWare now works again.<br>
67: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/019_lepci.patch">A source code patch exists which remedies the problem.</a><br>
68: <p>
1.305 jason 69: <a name=named></a>
70: <li><font color=#009000><strong>018: SECURITY FIX: Jan 29, 2001</strong></font><br>
1.306 deraadt 71: Merge <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=named&sektion=8">named</a>
72: with ISC BIND 4.9.8-REL, which fixes some buffer vulnerabilities (actually it appears
1.307 jason 73: that these were already impossible to exploit beforehands).<br>
1.305 jason 74: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/018_named.patch">A source code patch exists which remedies the problem.</a><br>
75: <p>
1.303 jason 76: <a name=rnd></a>
1.302 jason 77: <li><font color=#009000><strong>017: SECURITY FIX: Jan 22, 2001</strong></font><br>
1.304 jason 78: The <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=random&sektion=4">rnd(4)</a> device does not use all of its input when data is written to it.<br>
1.302 jason 79: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/017_rnd.patch">A source code patch exists which remedies the problem.</a><br>
80: <p>
1.300 jason 81: <a name=tl></a>
1.301 jason 82: <li><font color=#009000><strong>016: RELIABILITY FIX: Jan 4, 2001</strong></font><br>
1.300 jason 83: Allow ThunderLAN cards to share interrupts nicely.<br>
84: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/016_tl.patch">A source code patch exists which remedies the problem.</a>
85: <p>
1.299 ericj 86: <a name=xlock></a>
87: <li><font color=#009000><strong>014: SECURITY FIX: Dec 22, 2000</strong></font><br>
88: Improve xlock(1)'s authentication by authenticating via a pipe in an early forked process. No known vulnerability exists, this is just a precautionary patch.<br>
89: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/014_xlock.patch">A source code patch exists which remedies the problem.</a>
90: <p>
91: In addition to a source code patch, new xlock binaries have been created for each architecture listed below. Place these binaries at <i>/usr/X11R6/bin/xlock</i>
92: and <i>chmod 4755 /usr/X11R6/bin/xlock</i>.
93: <p>
94: <ul>
95: <li><a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/i386/xlock">Xlock - i386</a>
96: <li><a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/sparc/xlock">Xlock - sparc</a>
97: <li><a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/mac68k/xlock">Xlock - mac68k</a>
98: <li><a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/powerpc/xlock">Xlock - powerpc</a>
99: <li><a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/amiga/xlock">Xlock - amiga</a>
100: <li><a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/hp300/xlock">Xlock - hp300</a>
101: <li><a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/mvme68k/xlock">Xlock - mvme68k</a>
102: </ul>
103: <p>
1.296 ericj 104: <a name=procfs></a>
105: <li><font color=#009000><strong>013: SECURITY FIX: Dec 18, 2000</strong></font><br>
1.298 ericj 106: <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=mount_procfs&sektion=8">Procfs</a> contained numerous overflows, which could lead an intruder to root permissions. Procfs is NOT enabled by default in OpenBSD. <br>
107: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/013_procfs.patch">A source code patch exists which remedies the problem.</a>
108: <p>
1.292 deraadt 109: <a name=hwcrypto></a>
110: <li><font color=#009000><strong>011: RELIABILITY FIX: Dec 13, 2000</strong></font><br>
1.294 jufi 111: The crypto subsystem could incorrectly fail to run certain software ciphers,
1.292 deraadt 112: if a hardware card existed in the machine.<br>
113: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/011_hwcrypto.patch">
114: A source code patch exists which remedies the problem.</a>
1.293 deraadt 115: <p>
1.292 deraadt 116: <a name=fastroute></a>
117: <li><font color=#009000><strong>010: RELIABILITY FIX: Dec 11, 2000</strong></font><br>
118: A crash could occur during fast routing, if IPSEC was enabled.<br>
119: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/010_fastroute.patch">
120: A source code patch exists which remedies the problem.</a>
1.293 deraadt 121: <p>
1.290 deraadt 122: <a name=kerberos2></a>
1.291 deraadt 123: <li><font color=#009000><strong>009: SECURITY FIX: Dec 10, 2000</strong></font><br>
1.295 aaron 124: Another problem exists in the Kerberos libraries.<br>
1.290 deraadt 125: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/009_kerberos2.patch">
126: A source code patch exists which remedies the problem.</a>
127: <p>
1.286 deraadt 128: <a name=kerberos></a>
1.288 deraadt 129: <li><font color=#009000><strong>008: SECURITY FIX: Dec 7, 2000</strong></font><br>
1.286 deraadt 130: Two problems have recently been discovered in the KerberosIV code.<p>
131: 1. A symlink problem was discovered in the KerberosIV password checking
132: routines /usr/bin/su and /usr/bin/login, which makes it possible for a
133: local user to overwrite any file on the local machine.<p>
1.287 jufi 134: 2. It is possible to specify environment variables in telnet
1.286 deraadt 135: which will be passed over the to the remote host. This makes it
136: possible to set environment variables on the remote side, including
137: ones that have special meaning on the server. It is not clear at this
138: time what the impact is, but we recommend everyone to upgrade their
1.289 jufi 139: machines immediately.<p>
1.288 deraadt 140: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/008_kerberos.patch">
1.286 deraadt 141: A source code patch exists which remedies the problem.</a>
142: <p>
1.285 deraadt 143: <a name=ftpd></a>
144: <li><font color=#009000><strong>005: SECURITY FIX: Dec 4, 2000</strong></font><br>
145: OpenBSD 2.8's ftpd contains a one-byte overflow in the replydirname() function.<br>
146: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/005_ftpd.patch">
1.296 ericj 147: A source code patch exists which remedies the problem.</a><br>
1.298 ericj 148: You can view the <a href="advisories/ftpd_replydirname.txt">OpenBSD Advisory</a> here.
1.285 deraadt 149: <p>
1.284 jason 150: <a name=rijndael> </a>
151: <li><font color=#009000><strong>004: RELIABILITY FIX: Nov 17, 2000</strong></font><br>
1.292 deraadt 152: First off, AES (rijndael) encryption and decryption were broken for IPSec
153: and swap encryption.<br>
154: Secondly, the AES code did not work properly on big endian machines.<br>
1.284 jason 155: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/004_rijndael.patch">
1.292 deraadt 156: A second revision source code patch exists which remedies the problem.</a>
1.284 jason 157: <p>
1.282 deraadt 158: <li><font color=#009000><strong>002: IMPLEMENTATION FIX: Nov 10, 2000</strong></font><br>
159: In ssh(1), skey support for SSH1 protocol was broken. Some people might consider
160: that kind of important.<br>
161: <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/common/002_sshskey.patch>
162: A source code patch exists which remedies this problem.</a>
1.25 deraadt 163: </ul>
1.177 deraadt 164: <p>
1.42 deraadt 165: <a name=i386></a>
1.67 deraadt 166: <li><h3><font color=#e00000>i386</font></h3>
1.25 deraadt 167: <ul>
1.313 ! ericj 168: <a name=userldt></a>
! 169: <li><font color=#009000><strong>022: SECURITY FIX: Mar 2, 2001</strong></font><br>
! 170: The <b>USER_LDT</b> kernel option allows an attacker to gain access to privledged area's of kernel memory. This option is not on by default.
! 171: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/i386/022_userltd.patch">A source code patch exists which remedies the problem.</a><br>
1.299 ericj 172: <a name=pms></a>
173: <li><font color=#009000><strong>015: STABILITY FIX: Dec 22, 2000</strong></font><br>
174: Some machines locked up while trying to use the mouse in console mode. This patch solves that problem.<br>
175: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/i386/015_pms.patch">A source code patch exists which remedies this problem.</a>
176: <p>
1.285 deraadt 177: <a name=pcibios></a>
178: <li><font color=#009000><strong>006: STABILITY FIX: Dec 4, 2000</strong></font><br>
179: On some machines, a PCIBIOS device driver interrupt allocation bug can cause a
180: kernel hang while probing PCI devices. If you have this symptom, you can disable
181: PCIBIOS as a workaround. To do this,
182: <ul>
183: <li>Enter the User Kernel Configuration by booting with the
184: option "boot -c".
185: <li>Once at the <i>UKC></i> prompt, enter <pre><tt>
186: UKC> disable pcibios
187: UKC> quit
188: </tt></pre>
189: <li>See <a href="./faq/faq5.html#5.6">FAQ 5.6</a> after a successful
190: boot for instructions on how to re-write your kernel to disable PCIBIOS
191: permanently.
192: </ul>
193: <p>
1.39 deraadt 194: </ul>
1.155 deraadt 195: <p>
1.47 deraadt 196: <a name=mac68k></a>
1.67 deraadt 197: <li><h3><font color=#e00000>mac68k</font></h3>
1.39 deraadt 198: <ul>
1.285 deraadt 199: <a name=x_mac68k></a>
200: <li><font color=#009000><strong>007: INSTALL PROBLEM: Dec 4, 2000</strong></font><br>
201: The X packages
202: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/mac68k/xshare28.tgz">share28.tgz</a>
203: and
204: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/mac68k/xfont28.tgz">font28.tgz</a>
205: were not on the CD, and only available via FTP install. These packages can be
206: added post-install by using the following command:
207: <tt><pre>
208: # cd /; tar xvfpz xshare28.tgz
209: # cd /; tar xvfpz xfont28.tgz
210: </pre></tt>
1.25 deraadt 211: </ul>
1.155 deraadt 212: <p>
1.65 deraadt 213: <a name=sparc></a>
1.67 deraadt 214: <li><h3><font color=#e00000>sparc</font></h3>
1.25 deraadt 215: <ul>
1.285 deraadt 216: <a name=x_sparc></a>
217: <li><font color=#009000><strong>007: INSTALL PROBLEM: Dec 4, 2000</strong></font><br>
218: The X packages
219: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/sparc/xshare28.tgz">share28.tgz</a>
220: and
221: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/sparc/xfont28.tgz">font28.tgz</a>
222: were not on the CD, and only available via FTP install. These packages can be
223: added post-install by using the following command:
224: <tt><pre>
225: # cd /; tar xvfpz xshare28.tgz
226: # cd /; tar xvfpz xfont28.tgz
227: </pre></tt>
228: <p>
229: <a name=qe></a>
1.284 jason 230: <li><font color=#009000><strong>003: RELIABILITY FIX: Nov 17, 2000</strong></font><br>
231: Configuring a qec+qe causes a NMI panic.<br>
232: <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/sparc/003_qe.patch>
233: A source code patch exists which remedies this problem.</a>
234: <p>
1.282 deraadt 235: <a name=zsconsole> </a>
236: <li><font color=#009000><strong>001: RELIABILITY FIX: Nov 10, 2000</strong></font><br>
237: When running a sparc with a serial console, certain types of interrupts would
238: cause great grief.<br>
239: <a href=ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/sparc/001_zsconsole.patch>
240: A source code patch exists which remedies this problem.</a>
1.39 deraadt 241: </ul>
1.177 deraadt 242: <p>
1.93 deraadt 243: <a name=amiga></a>
1.67 deraadt 244: <li><h3><font color=#e00000>amiga</font></h3>
1.93 deraadt 245: <ul>
1.285 deraadt 246: <a name=x_amiga></a>
247: <li><font color=#009000><strong>007: INSTALL PROBLEM: Dec 4, 2000</strong></font><br>
248: The X packages
249: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/amiga/xshare28.tgz">share28.tgz</a>
250: and
251: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/amiga/xfont28.tgz">font28.tgz</a>
252: were not on the CD, and only available via FTP install. These packages can be
253: added post-install by using the following command:
254: <tt><pre>
255: # cd /; tar xvfpz xshare28.tgz
256: # cd /; tar xvfpz xfont28.tgz
257: </pre></tt>
1.25 deraadt 258: </ul>
1.155 deraadt 259: <p>
1.65 deraadt 260: <a name=pmax></a>
1.67 deraadt 261: <li><h3><font color=#e00000>pmax</font></h3>
1.25 deraadt 262: <ul>
1.281 deraadt 263: <li>No problems identified yet.
1.25 deraadt 264: </ul>
1.155 deraadt 265: <p>
1.281 deraadt 266: <a name=hp300></a>
267: <li><h3><font color=#e00000>hp300</font></h3>
1.59 deraadt 268: <ul>
1.285 deraadt 269: <a name=x_hp300></a>
270: <li><font color=#009000><strong>007: INSTALL PROBLEM: Dec 4, 2000</strong></font><br>
271: The X packages
272: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/hp300/xshare28.tgz">share28.tgz</a>
273: and
274: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/hp300/xfont28.tgz">font28.tgz</a>
275: were not on the CD, and only available via FTP install. These packages can be
276: added post-install by using the following command:
277: <tt><pre>
278: # cd /; tar xvfpz xshare28.tgz
279: # cd /; tar xvfpz xfont28.tgz
280: </pre></tt>
1.59 deraadt 281: </ul>
1.155 deraadt 282: <p>
1.281 deraadt 283: <a name=mvme68k></a>
284: <li><h3><font color=#e00000>mvme68k</font></h3>
1.56 deraadt 285: <ul>
1.285 deraadt 286: <a name=x_mvme68k></a>
287: <li><font color=#009000><strong>007: INSTALL PROBLEM: Dec 4, 2000</strong></font><br>
288: The X packages
289: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/mvme68k/xshare28.tgz">share28.tgz</a>
290: and
291: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/mvme68k/xfont28.tgz">font28.tgz</a>
292: were not on the CD, and only available via FTP install. These packages can be
293: added post-install by using the following command:
294: <tt><pre>
295: # cd /; tar xvfpz xshare28.tgz
296: # cd /; tar xvfpz xfont28.tgz
297: </pre></tt>
1.56 deraadt 298: </ul>
1.155 deraadt 299: <p>
1.281 deraadt 300: <a name=powerpc></a>
301: <li><h3><font color=#e00000>powerpc</font></h3>
1.110 millert 302: <ul>
1.293 deraadt 303: <a name=imacdv></a>
304: <li><font color=#009000><strong>012: INSTALL PROBLEM: Dec 14, 2000</strong></font><br>
305: The IMac DV+ (and probably some other machines) incorrectly identify their video
306: hardware, but it is possible to work around the problem.<br>
1.309 jason 307: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.8/powerpc/012_imacdv.patch">
1.293 deraadt 308: A source code patch exists which remedies the problem.</a>
1.56 deraadt 309: </ul>
1.155 deraadt 310: <p>
1.281 deraadt 311: <a name=vax></a>
312: <li><h3><font color=#e00000>vax</font></h3>
1.25 deraadt 313: <ul>
1.232 deraadt 314: <li>No problems identified yet.
1.25 deraadt 315: </ul>
1.155 deraadt 316: <p>
1.281 deraadt 317: <a name=sun3></a>
318: <li><h3><font color=#e00000>sun3</font></h3>
1.95 deraadt 319: <ul>
1.285 deraadt 320: <a name=x_sun3></a>
321: <li><font color=#009000><strong>007: INSTALL PROBLEM: Dec 4, 2000</strong></font><br>
322: The X packages
323: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/sun3/xshare28.tgz">share28.tgz</a>
324: and
325: <a href="ftp://ftp.openbsd.org/pub/OpenBSD/2.8/sun3/xfont28.tgz">font28.tgz</a>
326: were not on the CD, and only available via FTP install. These packages can be
327: added post-install by using the following command:
328: <tt><pre>
329: # cd /; tar xvfpz xshare28.tgz
330: # cd /; tar xvfpz xfont28.tgz
331: </pre></tt>
1.144 deraadt 332: </ul>
333:
1.197 deraadt 334: </dl>
1.25 deraadt 335: <br>
1.75 deraadt 336:
1.25 deraadt 337: <hr>
1.240 jason 338: <a href=stable.html>For OpenBSD patch branch information, please refer here.</a><br>
1.93 deraadt 339: <a href=errata21.html>For 2.1 errata, please refer here</a>.<br>
340: <a href=errata22.html>For 2.2 errata, please refer here</a>.<br>
1.144 deraadt 341: <a href=errata23.html>For 2.3 errata, please refer here</a>.<br>
1.176 deraadt 342: <a href=errata24.html>For 2.4 errata, please refer here</a>.<br>
1.198 deraadt 343: <a href=errata25.html>For 2.5 errata, please refer here</a>.<br>
1.232 deraadt 344: <a href=errata26.html>For 2.6 errata, please refer here</a>.<br>
1.281 deraadt 345: <a href=errata27.html>For 2.7 errata, please refer here</a>.<br>
1.2 deraadt 346: <hr>
1.176 deraadt 347:
1.186 deraadt 348: <a href=index.html><img height=24 width=24 src=back.gif border=0 alt=OpenBSD></a>
1.2 deraadt 349: <a href=mailto:www@openbsd.org>www@openbsd.org</a>
1.313 ! ericj 350: <br><small>$OpenBSD: errata.html,v 1.312 2001/02/22 17:55:41 deraadt Exp $</small>
1.2 deraadt 351:
352: </body>
353: </html>