On Tue, 7 Oct 1997, George wrote:
> On Tue, 7 Oct 1997, Kenneth G. Cavness wrote:
>
> >3. Your heavy-handed, arrogant method of describing this whole "security
> > flaw" prompted strong reactions in others. You list it as a "fact" that
> > it's a bug -- in fact, the entire thing with being able to switch into
> > other players is one huge security hole and anyone choosing to use it had
> > already better have a damn good reason for using it. It's not just
> > limited to mail. You tell other people "Fix it" -- before you so
> > graciously say "fix it or no, I don't care".
>
> I don't even see how it is a security hole since only *implementors* can do
> it and if you don't trust someone enough to not do that (for a good
> reason), why are they an implementor on your MUD? (and of course,
I was trying to think of another way to put it than "Security flaw" but
you're right; security holes are ways for other people to poke through a
security structure. One big potential security problem, maybe?
--
Kenneth G. Cavness
ph#:+1-301-767-0977 | mailto:kcavness@proxicom.com
+------------------------------------------------------------+
| Ensure that you have read the CircleMUD Mailing List FAQ: |
| http://democracy.queensu.ca/~fletcher/Circle/list-faq.html |
+------------------------------------------------------------+
This archive was generated by hypermail 2b30 : 12/08/00 PST