Skip Navigational Links
LISTSERV email list manager
LISTSERV - COMMUNITY.EMAILOGY.COM
LISTSERV Menu
Log In
Log In
LISTSERV 17.5 Help - LSTOWN-L Archives
LISTSERV Archives
LISTSERV Archives
Search Archives
Search Archives
Register
Register
Log In
Log In

LSTOWN-L Archives

LISTSERV List Owners' Forum

LSTOWN-L

Menu
LISTSERV Archives LISTSERV Archives
LSTOWN-L Home LSTOWN-L Home

Log In Log In
Register Register

Subscribe or Unsubscribe Subscribe or Unsubscribe

Search Archives Search Archives
Options: Use Forum View

Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Security problem
From:
Eric Thomas <[log in to unmask]>
Reply To:
LISTSERV list owners' forum <[log in to unmask]>
Date:
Tue, 10 Jan 1995 15:11:06 +0100
Content-Type:
text/plain
Parts/Attachments:
text/plain (15 lines)
The first problem is  due to the fact that there  is no standard function
in  VM  to read  a  password  without echoing  it.  It's  easy to  do  in
assembler, just not in high level languages. Most sites have DIRMAINT and
that comes with a  utility to read passwords. If present,  it is used, if
not the password is echoed.
 
The apparent security problem is due to  the fact that the server you are
talking to is on the same machine  that you are sending the command from.
VM guarantees to LISTSERV that the file it received really came from you.
So, just as passwords are not needed with TELL from local users, they are
not needed with  SENDFILE from local users. If you  were sending over the
network, the password would of course have been checked.
 
  Eric

ATOM RSS1 RSS2

COMMUNITY.EMAILOGY.COM CataList Email List Search Powered by LISTSERV