| Title: | DECWINDOWS 26-JAN-89 to 29-NOV-90 |
| Notice: | See 1639.0 for VMS V5.3 kit; 2043.0 for 5.4 IFT kit |
| Moderator: | STAR::VATNE |
| Created: | Mon Oct 30 1989 |
| Last Modified: | Mon Dec 31 1990 |
| Last Successful Update: | Fri Jun 06 1997 |
| Number of topics: | 3726 |
| Total number of notes: | 19516 |
There is a nasty bug that has grave security implications.....
If you logon to a DECwindows session (say as SYSTEM) and AS SOON
AS the Session manager box appears select QUIT you will be returned
to the login screen as normal, BUT the fileview window may well
appear over the login screen up to a minute later! - allowing you
to delete files etc........
This appears to work every time in environments where there is not
a large amount of Window customisation.
We are running VMS V5.1-B with SDC DECwindows.
Is this a known problem?
Regards,
Jon.
| T.R | Title | User | Personal Name | Date | Lines |
|---|---|---|---|---|---|
| 363.1 | Another QAR | DECWIN::FISHER | Burns Fisher 381-1466, ZKO3-4/W23 | Fri Mar 10 1989 21:47 | 6 |
Better QAR it.
Thanks.
Burns
| |||||
| 363.2 | XUI::VANNOY | Jake VanNoy | Mon Mar 13 1989 14:58 | 11 | |
I won't comment on whether these last couple of things entered here as security problems are that or not, but... Does it seem SMART to say "Here's a SECURITY BUG" in a public notes file? I suggest that people finding what they believe are security problems submit a QAR. The development group can then mark it NO-publish if it is a sensitive issue. thank you. | |||||