From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org
X-Spam-Level: 
X-Spam-Status: No, score=-0.8 required=5.0 tests=DKIM_INVALID,DKIM_SIGNED,
	MAILING_LIST_MULTI,T_SCC_BODY_TEXT_LINE autolearn=ham
	autolearn_force=no version=3.4.4
Received: (qmail 22078 invoked from network); 30 Jul 2023 23:35:22 -0000
Received: from minnie.tuhs.org (2600:3c01:e000:146::1)
  by inbox.vuxu.org with ESMTPUTF8; 30 Jul 2023 23:35:22 -0000
Received: from minnie.tuhs.org (localhost [IPv6:::1])
	by minnie.tuhs.org (Postfix) with ESMTP id CCF0D410EB;
	Mon, 31 Jul 2023 09:35:16 +1000 (AEST)
Received: from mail-oo1-xc2d.google.com (mail-oo1-xc2d.google.com [IPv6:2607:f8b0:4864:20::c2d])
	by minnie.tuhs.org (Postfix) with ESMTPS id B1010410C7
	for <tuhs@tuhs.org>; Mon, 31 Jul 2023 09:35:08 +1000 (AEST)
Received: by mail-oo1-xc2d.google.com with SMTP id 006d021491bc7-56cb1e602e7so211486eaf.1
        for <tuhs@tuhs.org>; Sun, 30 Jul 2023 16:35:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=algebras-org.20221208.gappssmtp.com; s=20221208; t=1690760107; x=1691364907;
        h=to:subject:message-id:date:from:in-reply-to:references:mime-version
         :from:to:cc:subject:date:message-id:reply-to;
        bh=1W33FGkwg3bszVI9DWI/BC7TroAqtXw/84vQC9JmG98=;
        b=zRNbO8d/9WZixhQZrQUE15X88V/4gCuMz8xkvqcgd1trHcRerUfIcKKxY/dJYXE5Vb
         uk9u3VPh5xBLlmDP7bcmmzXGXM0jkNOx2SB+vpDACYw+iXJT5uxlTHd3luARDoNcpJ0f
         PQ+w4N4eRRRAhFf9eqyiK61ZfDoP3ur9+A2s7yvigIJ3Y4G7JERqsm5+eWyw1oG1mg45
         xRYwj+3R03y+io1FvSUbtRvX4m1EbZCtg4OQ26J3KoRXhwuKdl3KJVFo4gRpjlpo1nM9
         QKDaqae72CBedNFh2Z7lAYtc/m5wzI/sdUW4OVeqamqzh88QxJe/X1njVoW8K+Hnrdds
         1wyQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20221208; t=1690760107; x=1691364907;
        h=to:subject:message-id:date:from:in-reply-to:references:mime-version
         :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=1W33FGkwg3bszVI9DWI/BC7TroAqtXw/84vQC9JmG98=;
        b=XV71N4WpOC3y9P1SAnR/uEwl3Y1JYk/Fw5AWzx04NkQhlt3Z/6nyoWr0H19zmNY9Ku
         KwZz7c3mzLSgP/65COAupjIiPp+sdNVsxX5QUhaEQFBUtHUvxE10yn95yKjW5n1RoD5z
         yoObONmAN8BnVB9rRHtkTCkJaetYgIwIfq7caeT5XrmKdEFEf3R7a9/cx5oBPZLjhtgK
         VYdyVtQtjjlpwDDhyi5zjUhvEaInf6hgQBAx6lJf2fsFHsl9LC6+TGKhj/1PPG75bBu4
         3xFE11xXE4O/6aEN6KYrj/ZhPNaXLFFyGgIVrIq0FQvLsA4IPmJmv/pK05GG14k0mqbA
         QeQw==
X-Gm-Message-State: ABy/qLbm0fmkKixV4713uAaPGZ1/CXPljbfuw2T4EbGLy1lbRNlXcXZI
	9Ecsa10ChwnpUQ6bpKZ0b/+9QBwxb5D8bgZTQIh2E6aSlE7uMze0
X-Google-Smtp-Source: APBJJlHwNU9tPePi4qwAD1vlMO55D84EbhW5CYkPKdIrKTWesGQojT2OfAoR2GIAf2V60EaDM/76KOTA/wPqfqCLnUw=
X-Received: by 2002:a4a:9b1b:0:b0:56c:a841:610f with SMTP id
 a27-20020a4a9b1b000000b0056ca841610fmr2270051ook.2.1690760107610; Sun, 30 Jul
 2023 16:35:07 -0700 (PDT)
MIME-Version: 1.0
References: <1B96127522E338B678C2F77EB615BFFF.for-standards-violators@oclsc.org>
 <CAKzdPgx0_zkUV7F-E1m3cAmRJtUWNVx2NNLSuMO66TXqeZvM7g@mail.gmail.com>
In-Reply-To: <CAKzdPgx0_zkUV7F-E1m3cAmRJtUWNVx2NNLSuMO66TXqeZvM7g@mail.gmail.com>
From: George Michaelson <ggm@algebras.org>
Date: Mon, 31 Jul 2023 09:34:56 +1000
Message-ID: <CAKr6gn1HaSSZyeKDH1u-b-J56qLxOc6WDBd_npJEk8wE3Jk+-Q@mail.gmail.com>
To: tuhs@tuhs.org
Content-Type: text/plain; charset="UTF-8"
Message-ID-Hash: B3ZWL6CU72QNBA4QPHWAI4YSNHZG4VCV
X-Message-ID-Hash: B3ZWL6CU72QNBA4QPHWAI4YSNHZG4VCV
X-MailFrom: ggm@algebras.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.6b1
Precedence: list
Subject: [TUHS] Re: Cool talk on Unix and Sendmail history, by Eric Allman
List-Id: The Unix Heritage Society mailing list <tuhs.tuhs.org>
Archived-At: <https://www.tuhs.org/mailman3/hyperkitty/list/tuhs@tuhs.org/message/B3ZWL6CU72QNBA4QPHWAI4YSNHZG4VCV/>
List-Archive: <https://www.tuhs.org/mailman3/hyperkitty/list/tuhs@tuhs.org/>
List-Help: <mailto:tuhs-request@tuhs.org?subject=help>
List-Owner: <mailto:tuhs-owner@tuhs.org>
List-Post: <mailto:tuhs@tuhs.org>
List-Subscribe: <mailto:tuhs-join@tuhs.org>
List-Unsubscribe: <mailto:tuhs-leave@tuhs.org>

It must be the fate of all UUCP-like protocols to recapitulate the
life of UUCP. My memory is that ACSNet (quite UUCP like) had both an
execute, and a *@dom.ain and even root@* handling, and that it caused
some DOS consequences.

There's nothing implicitly wrong with remote execution, remote job
entry was a thing back in the coloured book protocols. I guess the
problem inherent in "just do this thing" in UUCP was the permissions
and runtime context. But a chroot() and permissions drop should have
made it less risky. There is the "but anyone can inject it" problem.

Execute on read is just awful. But, now we have HTML to track "they
read it" through URL fetch.

G