----- Original Message -----
From: "Bruce Steers" <bsteers@...>
To: <The-Crypt@yahoogroups.com>; "awnpipeML" <awnpipe@yahoogroups.com>;
<amiga_sa@yahoogroups.com>
Sent: 11 November 2001 11:22
Subject: Re: [amiga_sa] Re: security risk


>
> I'm not 100% convinced that AWNPipe is a security risk.
>
> the Report spoke of APIPE: , i do not know how APIPE got it's name but i bet
the 'A' does not mean Aweb like it does in AWNPipe
> (Aweb News Pipe)
>
> the report said AWNPipe was a posibility but it did not sound like it had been
checked.
> they might just have assumed they were similar as they both begin with the
letter 'A' ?
>
> i am trying to check it out now but my mui is missing the toolbar.mcc so i
cannot run yam atm (i will fix it and test)

Well i just tried it and could not get it to make AWNPipe do anything out of the
ordinary.

I think that AWNPipe has not really been tested and people have said APipe /
AWNPipe must be the same as they sound the same :-\

I cannot see how AWNPipe could be vunerable???.

Please don't comment with any speculations to this, it is a serious matter,
FACTS ONLY PLEASE

I tried a few methods and did not get a YAM subject to dangerously affect
AWNPipe in any way.

here's the AWNPipe offending text from the online Report....

/End users should disable APIPE: and other similar pipe devices (AWNPIPE: is a
possibility)/

see 'Possibility' no acctual checking has been done by them.

but it has by me... seems fine.

Bruce