Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 10 Jan 1997 16:08:55 -0700 (MST)
From:      Stephen Fisher <lithium@cia-g.com>
To:        Warner Losh <imp@village.org>
Cc:        Steve Reid <steve@edmweb.com>, freebsd-security@freebsd.org
Subject:   Re: Obvious fix for tempfile race conditions? 
Message-ID:  <Pine.BSI.3.95.970110160609.27393B-100000@maslow.cia-g.com>
In-Reply-To: <E0viaIK-0006bf-00@rover.village.org>

next in thread | previous in thread | raw e-mail | index | archive | help

On Thu, 9 Jan 1997, Warner Losh wrote:

> In message <Pine.BSF.3.95.970109214858.1613A-100000@bitbucket.edmweb.com> Steve Reid writes:
> : Just because it _can_ be done safely doesn't mean that it _is_ being
> : done safely. 
> 
> But it *IS* being done safely on OpenBSD.  I see no reason why it
> can't be so on FreeBSD.  The example you cited was just security
> ignorance on the part of the /etc/security writer.

If OpenBSD is so much better why doesn't anyone else get word of OpenBSD's
fixes?

> Not really.  There are so many holes in FreeBSD right now, I doubt it
> would slow them down much.  Holes I'm working on closing, BTW.  Here
> "so many" mean "at least one known that gives you root."

Anything helps.
 

 - Steve
  - Systems Manager
  - Community Internet Access, Inc.
  - Gallup and Grants, New Mexico




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSI.3.95.970110160609.27393B-100000>