From owner-freebsd-arch Sun Feb 11 19:38:25 2001 Delivered-To: freebsd-arch@freebsd.org Received: from mta5.snfc21.pbi.net (mta5.snfc21.pbi.net [206.13.28.241]) by hub.freebsd.org (Postfix) with ESMTP id 11D1737B401; Sun, 11 Feb 2001 19:38:20 -0800 (PST) Received: from xor.obsecurity.org ([63.207.60.67]) by mta5.snfc21.pbi.net (Sun Internet Mail Server sims.3.5.2000.01.05.12.18.p9) with ESMTP id <0G8M00I36KH0NT@mta5.snfc21.pbi.net>; Sun, 11 Feb 2001 19:31:49 -0800 (PST) Received: by xor.obsecurity.org (Postfix, from userid 1000) id 187B366B32; Sun, 11 Feb 2001 19:34:33 -0800 (PST) Date: Sun, 11 Feb 2001 19:34:32 -0800 From: Kris Kennaway Subject: Re: cvs commit: src/usr.bin/login login.c In-reply-to: ; from rwatson@FreeBSD.org on Sun, Feb 11, 2001 at 10:27:19PM -0500 To: Robert Watson Cc: Garance A Drosihn , Kris Kennaway , Jacques Vidrine , arch@FreeBSD.org, security-officer@FreeBSD.org Message-id: <20010211193432.A5428@mollari.cthul.hu> MIME-version: 1.0 Content-type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="2fHTh5uZTiUOsy+g" Content-disposition: inline User-Agent: Mutt/1.2.5i References: Sender: owner-freebsd-arch@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG --2fHTh5uZTiUOsy+g Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Feb 11, 2001 at 10:27:19PM -0500, Robert Watson wrote: > Perhaps I'm confused here, but isn't the list above the list of > environmental variables being applied to environmental variables exported > by the authentication/login authorization system itself? I'm a bit > confused as to why those variables even need filtering, other than to > discourage module developers from colliding on use of these potentially > abused variables. Yes, this has been clarified, although I still worry about a PAM module passing in environment variables from the remote system somehow. > More on your point, however -- having a centralized list of "safe"=20 > variables, possibly classifiable by user class, would be nice. However, a > lot of the places where this list of variables is needed are places where > a user class is not available -- for example, in the telnetd->login > transition.=20 Yes, we need a way for the administrator to add environment variables which are safe or desired in the local environment. Recently telnetd was changed to filter out all but a set of known safe variables, so the only way for an administrator to do this would be to recompile telnetd. Kris --2fHTh5uZTiUOsy+g Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE6h1nIWry0BWjoQKURAgESAKCaH4+2o+wZ/DTgoS9bIoElDeIUdACgn2Oy YQrp7CV5sqSzsLxGOREEiQk= =BmuL -----END PGP SIGNATURE----- --2fHTh5uZTiUOsy+g-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message