From owner-freebsd-security  Thu Aug 10 20:34:27 2000
Delivered-To: freebsd-security@freebsd.org
Received: from rover.village.org (rover.village.org [204.144.255.49])
	by hub.freebsd.org (Postfix) with ESMTP
	id 00EC537B6ED; Thu, 10 Aug 2000 20:34:24 -0700 (PDT)
	(envelope-from imp@harmony.village.org)
Received: from harmony.village.org (harmony.village.org [10.0.0.6])
	by rover.village.org (8.9.3/8.9.3) with ESMTP id VAA06388;
	Thu, 10 Aug 2000 21:34:22 -0600 (MDT)
	(envelope-from imp@harmony.village.org)
Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id VAA31525; Thu, 10 Aug 2000 21:33:54 -0600 (MDT)
Message-Id: <200008110333.VAA31525@harmony.village.org>
To: Kris Kennaway <kris@FreeBSD.ORG>
Subject: Re: suidperl exploit 
Cc: "Vladimir Mencl, MK, susSED" <mencl@nenya.ms.mff.cuni.cz>,
	freebsd-security@FreeBSD.ORG
In-reply-to: Your message of "Thu, 10 Aug 2000 14:36:25 PDT."
		<Pine.BSF.4.21.0008101434470.54452-100000@freefall.freebsd.org> 
References: <Pine.BSF.4.21.0008101434470.54452-100000@freefall.freebsd.org>  
Date: Thu, 10 Aug 2000 21:33:54 -0600
From: Warner Losh <imp@village.org>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message
<Pine.BSF.4.21.0008101434470.54452-100000@freefall.freebsd.org> Kris
Kennaway writes:
: I believe FreeBSD to be safe from this particular misfeature - FreeBSD's
: mail(1) program lives in another location, as already noted, and I don't
: even know if it supports the required features to exploit it.

We do support getting variables from the environment in our mail.  We
need to look into all the implications.  Of course, most programs on
the system use sendmail directly.

Warner


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message