Date: Sat, 17 Mar 2001 13:35:42 -0800 (PST) From: Matt Dillon <dillon@earth.backplane.com> To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> Cc: "Juha Saarinen" <juha@saarinen.org>, "Alexandr Kovalenko" <neve_ripe@yahoo.com>, freebsd-stable@FreeBSD.ORG Subject: Re: Not only ftpd's problem with ls */../*..... Message-ID: <200103172135.f2HLZgT96041@earth.backplane.com> References: <200103172107.f2HL7Ea02611@cwsys.cwsent.com>
index | next in thread | previous in thread | raw e-mail
These glob patches to libc are totally inappropriate. If there is a
problem with DOS attacks in ftp, the solution is to add a simple API
call to set the limit (the default being unlimited) and then make ftp use
it.
Screwing over every single program that uses the libc globing interface
'by default' is not the solution. Assuming that people will not use
this interface to glob more then 16384 files is insane.
-Matt
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200103172135.f2HLZgT96041>