Re: Re : where are we?

On Feb 02, 1997 at 10:12:44AM, Adrian Chadd wrote:
> Hi David. Just wondering if you had started telnetd and if so, where you

Hi Adrian,

No, I haven't actually started work on it, but I had in mind some specific fixes when I told Jordon about it. They will require some restructuring of a few of the functions, namely those in utility.c (putf() and friends).

If you wish to attack telnetd sooner, then go right ahead and see what else is there. You'll probably find right off that putf() could cause buffer overlow since it does no length checking on one of its arguments (the destination buffer). This is the part I need to fix by restructuring. Incidently, the overflow here is in the data area and not on the stack, and the data in question comes from system config files rather than the user, so the real risk of it causing problems is minimal - but the code could be done better (getty(8), for example, has similar code, but not the same problem).

I'll probably start hacking at it within the next few days. I just need to get another project off my back first. :-)

Regards,

David Nugent - Unique Computing Pty Ltd - Melbourne, Australia Voice +61-3-9791-9547 Data/BBS +61-3-9792-3507 3:632/348@fidonet davidn(at)freebsd.org davidn(at)blaze.net.au http://www.blaze.net.au/~davidn/ Received on Mon Feb 17 19:35:21 1997

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related audit-dead Links auditors bin contrib eBones games init lib libc libexec lkm sbin secure telnetd usr Request more information about Pantek