On 21 Jan 2003, Doug McNaught wrote:
> It's all over Slashdot:
>
> http://security.e-matters.de/advisories/012003.html
>
That bit about 'This does not apply to :pserver: only' (probably slightly
paraphrased) is very confusing. I gather from later on in the page that it
means that the flaw only applies to the pserver method.
--
Nigel J. Andrews