From owner-freebsd-security  Wed Jul 24 22:24:29 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id WAA17255
          for security-outgoing; Wed, 24 Jul 1996 22:24:29 -0700 (PDT)
Received: from janus.saturn.net (root@janus.saturn.net [206.42.0.10])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id WAA17250;
          Wed, 24 Jul 1996 22:24:24 -0700 (PDT)
Received: from tcpip (tcpip [206.42.2.27]) by janus.saturn.net (8.7.4/8.6.9) with SMTP id BAA18490; Thu, 25 Jul 1996 01:24:26 -0400
Date: Thu, 25 Jul 1996 01:23:13 -0400 (EDT)
From: Brian Mitchell <brian@saturn.net>
X-Sender: brian@tcpip
To: Gary Palmer <gpalmer@FreeBSD.org>
cc: Victor Rotanov <vitjok@fasts.lv>, freebsd-security@FreeBSD.org
Subject: Re: unofficial rlogin security patch 
In-Reply-To: <7556.838237326@orion.webspan.net>
Message-ID: <Pine.LNX.3.91.960725012205.85A-100000@tcpip>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-security@FreeBSD.org
X-Loop: FreeBSD.org
Precedence: bulk

On Wed, 24 Jul 1996, Gary Palmer wrote:

> Victor Rotanov wrote in message ID
> <Pine.BSF.3.91.960724215007.1220A-100000@server.fasts.lv>:
> > 
> > Hello.
> > 
> > Here's the patch:
> 
> What exactly is this meant to do, pray tell?

It fixes the TERM environment variable overflow, which can't be exploited 
anyways (because main() never returns) as far as I know, but it is still 
a good thing.


Brian Mitchell 				                brian@saturn.net
"I never give them hell. I just tell the truth and they think it's hell"
- H. Truman