===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.463
retrieving revision 1.464
diff -u -r1.463 -r1.464
--- www/plus.html 1999/08/31 03:29:13 1.463
+++ www/plus.html 1999/08/31 11:43:40 1.464
@@ -53,11 +53,11 @@
We are working on OpenBSD-current.
-- In cron(8), run sendmail as the user, not as root.
+
- Start amd(8) in /etc/amd.
- Fix buf overflow in amd(8).
- Support AAA-131CF card in ahc(4) driver.
- Check SACK hole validity better, and do sequence space arithmetic better.
-
- Make sure argv[] is NULL terminated in cron's fake popen().
+
- SECURITY ISSUE: In cron(8), make sure argv[] is NULL terminated in the fake popen() and run sendmail as the user, not as root. A patch is available.
- Some fixes to newsyslog(8).
- Disable SACK for now; some issues remain.
- Buffer overflow fixes in from(1).
@@ -445,7 +445,7 @@
www@openbsd.org
-
$OpenBSD: plus.html,v 1.463 1999/08/31 03:29:13 deraadt Exp $
+
$OpenBSD: plus.html,v 1.464 1999/08/31 11:43:40 deraadt Exp $