[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: GNU Sharutils and security

From: Bruno Haible
Subject: Re: GNU Sharutils and security
Date: Thu, 01 Jul 2004 18:45:47 +0200

> Somebody out there who wants to take over the sharutils package?

Before that, maybe it's time to split that package? uuencode and uudecode are 
useful and can therefore be reasonably part of a distribution. However, shar 
and unshar
being a security leak by design, and being obsoleted by the addition of MIME 
to email protocols, I think shar and unshar shouldn't be installed on any Unix 
system by

It's well-known that MSIE is a trojan horse and virus downloading engine, but 
in our camp
shar and unshar are similar, and we should address this issue.

Therefore, how about removing shar and unshar from the sharutils, or splitting 
into a useful and harmless package and a separate security -killer package?


WEB.DE Video-Mail - Sagen Sie mehr mit bewegten Bildern
Informationen unter: http://freemail.web.de/?mc=021199

reply via email to

[Prev in Thread] Current Thread [Next in Thread]