From owner-freebsd-security  Thu Aug 26 14: 7:41 1999
Delivered-To: freebsd-security@freebsd.org
Received: from burka.rdy.com (burka.rdy.com [205.149.163.30])
	by hub.freebsd.org (Postfix) with ESMTP
	id 2630E14C84; Thu, 26 Aug 1999 14:07:37 -0700 (PDT)
	(envelope-from dima@burka.rdy.com)
Received: (from dima@localhost)
	by burka.rdy.com (8.9.3/RDY&DVV) id OAA97706;
	Thu, 26 Aug 1999 14:04:42 -0700 (PDT)
Message-Id: <199908262104.OAA97706@burka.rdy.com>
Subject: Re: [secure@FREEBSD.LUBLIN.PL: FreeBSD (and other BSDs?) local root explot]
In-Reply-To: <199908262056.NAA03100@implode.root.com> from David Greenman at "Aug 26, 1999 01:56:29 pm"
To: dg@root.com
Date: Thu, 26 Aug 1999 14:04:42 -0700 (PDT)
Cc: dima@best.net, imp@village.org (Warner Losh),
	gsutter@pobox.com (Gregory Sutter), security-officer@FreeBSD.ORG,
	freebsd-security@FreeBSD.ORG
X-Class: Fast
Organization: HackerDome
Reply-To: dima@best.net
From: dima@best.net (Dima Ruban)
X-Mailer: ELM [version 2.4ME+ PL54 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

David Greenman writes:
>    Yikes, you're not proposing that we disable following of symlinks that
> point to binaries, are you?

I'm sorry? I'm not sure I've got your question ...
What binaries? This patch prevents coredumps to follow symlinks, that's it.
Or is there a side effect?

> 
> -DG
> 

-- dima


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message