Date: Tue, 3 Apr 2001 16:02:32 -0700 From: Alfred Perlstein <bright@wintelcom.net> To: Roman Shterenzon <roman@xpert.com> Cc: security@freebsd.org Subject: Re: 4.3rc2: if=/etc/issue in /etc/gettytab is not respected Message-ID: <20010403160232.I12164@fw.wintelcom.net> In-Reply-To: <Pine.LNX.4.30.0104040038410.12194-100000@jamus.xpert.com>; from roman@xpert.com on Wed, Apr 04, 2001 at 12:39:54AM %2B0200 References: <20010403151111.E12164@fw.wintelcom.net> <Pine.LNX.4.30.0104040038410.12194-100000@jamus.xpert.com>
next in thread | previous in thread | raw e-mail | index | archive | help
* Roman Shterenzon <roman@xpert.com> [010403 15:35] wrote:
> With enough attention and code analysis, that could be made before
> 4.3-RELEASE. There's almost two weeks left, and many people who are
> willing to test it. Me for example :)
There's basically two telnetd's in the source tree. When you
compile and install the one from src/secure/libexec/telnetd you
get one that doesn't respect the if= directive. It looks like
it doesn't even respect the other settings, something to do
with the USER environment variable.
I've moved this to the security list in an effort to get this
explained.
Anyone know why this going on?
Basically in "normal" (src/libexec/telnetd.c)
this:
if (getenv("USER"))
hostinfo = 0;
is false, but under "crypto" (src/crypto/telnet/telnetd/telnetd.c)
it's true and therefore doesn't display the login info.
--
-Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org]
Instead of asking why a piece of software is using "1970s technology,"
start asking why software is ignoring 30 years of accumulated wisdom.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010403160232.I12164>