Great Circle Associates Majordomo-Workers
(October 1998) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Security flaw in confirmation cookie
From: Jeff Wasilko <jeffw @ smoe . org>
Date: Mon, 5 Oct 1998 22:41:33 -0400
To: news @ npc . de, majordomo-workers @ GreatCircle . COM
In-reply-to: <199810052115.XAA27591@npc.de>; from "Joachim Schrod" on Mon, Oct 05, 1998 at 11:15:54PM +0200
Mail-followup-to: news@npc.de, majordomo-workers@GreatCircle.COM
References: <E0zORTO-0001vu-00@gedanken.demon.co.uk> <ufa3e976p92.fsf@sina.hpc.uh.edu> <199810052115.XAA27591@npc.de> 
On Mon, Oct 05, 1998 at 11:15:54PM +0200, Joachim Schrod wrote:
> >>>>> "JT" == Jason L Tibbitts <tibbs@hpc.uh.edu> writes:
> 
> JT> If you want secure authentication tokens, you'll have to use the
> JT> development version (which uses random tokens and keeps state) or apply
> JT> OXymoron's secure cookie patch to 1.94.4.
> 
> OXymoron's secure cookie patch? 
> 
> I've checked the 1.94 patch site, but didn't find it there. Can anyone
> supply me with a pointer?

You can get the 1.94.4 version from my site 

http://www.smoe.org/jeffw/majordomo/patches.html

It also has a link to the orginal 1.94.1 version.

Jeff
References:
Indexed By Date Previous: Re: Security flaw in confirmation cookie
From: Joachim Schrod <jschrod@acm.org>
Next: Re: Security flaw in confirmation cookie
From: "Andrew M. Bishop" <amb@gedanken.demon.co.uk>
Indexed By Thread Previous: Re: Security flaw in confirmation cookie
From: Joachim Schrod <jschrod@acm.org>
Next: Re: Security flaw in confirmation cookie
From: "Andrew M. Bishop" <amb@gedanken.demon.co.uk>
Google
 
Search Internet Search www.greatcircle.com