Practical UNIX & Internet Security, 2nd Edition
by Simson Garfinkel and Gene Spafford


This errata page lists errors outstanding in the most recent printing, 7/99.
To find errors corrected in previous reprints, return to the main errata page
and click on the lists of changes made.

If you have tehcnical questions or error reports, you can send them to
booktech@oreilly.com.  (Please specify the printing date of your copy.)


This page was updated on March 14, 2006.


Here's the key to the markup:

        [page-number]: serious technical mistake
        {page-number}: minor technical mistake
        <page-number>: important language/formatting problem
        (page-number): language change or minor formatting problem
        ?page-number?: reader question or request for clarification


CONFIRMED errors:

[288]  2nd  paragraph;
The textual description of how a computer uses
DNS to resolve a name is in error.  The text suggests that
only partial suffixes of the full hostname are sent to the nameservers
and the redirections are followed until the full hostname is sent.
As the figure on page 289 implies, the full hostname is sent everytime.


{344} Regarding the "$HOME attacks" section: if a shell uses $HOME it is also 
vulnerable, not only if it uses ~ as a shortcut.