Re: LYNX-DEV Re: ...vulnerability in Lynx...

[Jim Spath (Webmaster Jim)]

On Thu, 8 May 1997, Alan Cox wrote:

> > > in under a week or so it is a golden opportunity to get people to upgrade.
> > > Many many people will see the CERT advisory, including sysadmins with 2.4,
> > > 2.5 and other prehistoric releases.
> > 
> > I haven't followed this thread very closely, but if MY ISP moves the
> > Lynx temporary file directory to my home directory, I'll have to stop
> > using Lynx because my home directory has about 100K free...
> 
> And if we don't your ISP if they have a clue will delete it entirely for
> good. At least if we fix the default you can choose to be personally
> insecure by changing the tmp dir via the environment variables..

If we change the default to be an unpredictable name, would this
be a low enough risk?

------
<http://www.cs.indiana.edu/picons/db/users/us/md/lib/bcpl/jspath/face.xbm>
Marvin the Paranoid Android says:
It's no wonder I'm so depressed really is it?

;
; To UNSUBSCRIBE:  Send a mail message to address@hidden
;                  with "unsubscribe lynx-dev" (without the
;                  quotation marks) on a line by itself.
;