Practical UNIX and Internet Security
by Simson Garfinkel and Gene Spafford


Here are the changes that were made for the 11/98 reprint:


{236} in the script, added a forward slash to the line

	my_tty="$(bin/tty)"

to read

	my_tty="$(/bin/tty)"

Also, added a footnote at the end of the 5th paragraph (ending "simple shell 
script:") that says:

    "This script should work on most Unix systems with POSIX-compliant Korn 
    shells, but may require modification for older ksh versions. See tip #24
    on page 713."

and to the last line, removed quotes:
    
    exec -a -${real_shell##*/} $real_shell "${1+"$@"}

now reads

    exec -a -${real_shell##*/} $real_shell ${1+"$@"}


{294} Example 10-1, line 10:
	
    for (uid = 0;.....

now reads

    for ($uid = 0;.....


(531) line -3: removed the final (lowercase) "u" from "GHOTI.LCS.MIT.EDUu"


{541} Under the Warning heading:  Replaced the sentence

    "Do not run your server as root!" (all in italics)

with

    "Do not specify the user "root" for the user to run httpd in your 
    httpd configuration file." (all in italics)


{542} In para 2, replaced the sentence

    "Because the httpd program is run as root..."

with the two sentences

    "The httpd server must be run by the superuser so that it can bind to 
    port 80.  It then changes to the user ID specified in the configuration 
    file."

("httpd" in italics as before)