On Wed, 17 Jan 2001, Mike Burger wrote:
> The article doesn't appear to note the affected versions of rpc.statd and
> wu-ftpd that are affected...do you have any info on that?
wuftp is 2.6.0 and rpc.statd is the out of box version that comes with
6.2.
What that article fails to mention, and Slashdot actually got right for a
change, is that the ONLY boxes affected are 6.2 machines that have NOT
been updated with the various security and bug fix errata.
same with the RH7 machines. Teh RH7 vulnerability is with LPRng, and that
is only if you are using the box version of LPRng.
in essence, and with praise to /.,
the only machines caught by this worm, are then ones that are run by
administrators who dont bother keeping their machines updates with
security and bug patches.
cheers
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
