Subject: rsync flaw
To: None <netbsd-users@netbsd.org, tech-security@netbsd.org>
From: Steve Bellovin <smb@research.att.com>
List: tech-security
Date: 12/04/2003 12:54:22 
Although this is covered by audit-packages, this flaw seems to be very 
critical:  there's a flaw in rsyncd, and it has apparently been used to 
compromise public rsync servers.

http://www.secunia.com/advisories/10353/


		--Steve Bellovin, http://www.research.att.com/~smb