Hosting Provided By

Re: Re : Bounds-checking gcc ..

From: Phillip Musumeci <phillip(at)pm.cse.rmit.edu.au>
Date: Tue Feb 18 1997 - 10:10:30 EST

>>>>> "Adrian" == Adrian Chadd <adrian@cougar.aceonline.com.au> writes:

    Warner> ......... will do nothing for the race conditions, the bad uses
    Warner> of mktemp, et al, the sloppy use of seteuid(), badly written
    Warner> setuid programs, etc.

A few years back, sunos had a bit of a scare with sendmail launching shell scripts [or other programs (?)] that could inherit inappropriate environment variables. A temporary fix that was circulated at the time was a very simple piece of code that cleaned out the environment before running the desired task via a call to execl() or one of its friends. This wrapper was simple and therefore easy to trust.

If FreeBSD has a need for one task to call another task with a safe environment (no undesired LD_LIBRARY_PATHs etc.), maybe we could also have a single piece of well-read trusted source code that could be maintained for use as a wrapper where appropriate.

Sorry if this is getting off the original thread.

phillip Received on Tue Feb 18 07:10:38 1997

This message: [ Message body ]
Next message: Matt Dillon: "Re: Re : Bounds-checking gcc .."
Previous message: Adrian Chadd: "Re : Bounds-checking gcc .."
In reply to: Adrian Chadd: "Re : Bounds-checking gcc .."
In reply to Phillip Musumeci: "Re: Security Advisory - Recent compromise of freefall.freebsd.org"
Reply: Matt Dillon: "Re: Re : Bounds-checking gcc .."

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 12:41:02 EDT