Decision

From: Peteris Krumins (newsgroupsat_private)
Date: Wed Jun 04 2003 - 17:50:58 PDT

Next message: Dave Korn: "Re: strcpy bug"

Previous message: xenophi1e: "Re: New Secuity Vulnerabilities"
Next in thread: Zow: "Re: Decision"
Reply: Zow: "Re: Decision"
Reply: Daan van de Linde: "Re: Decision"
Reply: Mike Caudill: "Re: Decision"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

 I have run into a hard decision - i just dicovered a bug in
 <someserver> which <some large company> runs and is only
 accessible to the clients of <the company> - it's an auth
 server, somewhere tied together with Cisco router w/ SSG and
 RADIUS authentication.

 Due to bug, any source file can be read and the <the company> has spent
 thousands of $ for making the system.

 Whats the best - report the bug and possible workarounds or let it
 stay?
 What i am nervous of is that the <the company> could 'kick' me later
 for seeing the sources.
 

P.Krumins

Next message: Dave Korn: "Re: strcpy bug"
Previous message: xenophi1e: "Re: New Secuity Vulnerabilities"
Next in thread: Zow: "Re: Decision"
Reply: Zow: "Re: Decision"
Reply: Daan van de Linde: "Re: Decision"
Reply: Mike Caudill: "Re: Decision"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Jun 05 2003 - 11:29:13 PDT