shAUD321.WAV and platform security

[Mark S. Miller]

[I'm resending the following message to the E list because of the security 
issues it raises.  --MarkM]


Hi Tyler, shAUD321.WAV

What, how'd that get in there?  That's what I want to know.

As you know, I get all my voice mail from the JFax service 
http://www.jfax.com as voice enclosures (of type *.gsm).  For some reason, 
when I launch my gsm player from Eudora, it leaves *.WAV droppings in my C:\ 
folder, which I then periodically clear out.  For some even more unknown 
reason, it left this dropping in my e/src/bin directory, which then got 
packaged by my release-making procedure into all the tarballs I've uploaded 
to the usual place.  It contains a message that is definitely not to be 
publicly broadcast.  I caught this by accident and easily could have missed 
it.  Since you're about to be unpacking and repacking these tarballs anyway, 
could you remove it?  It seems to have gotten into all of them.


	Disturbed,
	--MarkM