This notice just came out from MorningStar Technologies this morning. I
thought it was important enough to forward to the Firewalls mailing list.
I have great confidence in MorningStar; I think they make a good product,
and I think they provide good customer support. I think they have acted
very admirably in publicizing this bug and the fix, rather than quietly
sweeping it under the rug and fixing it in a future release. I wish I
could say the same about all the other vendors in this market.
Brent Chapman Great Circle Associates
COM 1057 West Dana Street
+1 415 962 0841 Mountain View, CA 94041
Date: Fri, 24 Sep 93 09:39:58 -0400
From: Karl Fox <karl @
Message-Id: <9309241339 .
To: ppp-users @
Subject: Serious Security Problem in MST PPP
Organization: Morning Star Technologies, Inc.
Every version of Morning Star PPP built since November 6, 1991 has a
bug in the Filter file parser that causes phrases like
to act instead like
when `domain' has ambiguous /etc/services like this:
Check your Filter file immediately for such clauses and change them to
the equivalent `53/tcp' (or whatever is appropriate). You can change
it back once you've fetched and installed the newest 1.4Beta MST PPP