From owner-freebsd-security Thu Jul 6 11:23:27 2000 Delivered-To: freebsd-security@freebsd.org Received: from epsilon.lucida.qc.ca (epsilon.lucida.qc.ca [216.95.146.6]) by hub.freebsd.org (Postfix) with SMTP id 21DB437B557 for ; Thu, 6 Jul 2000 11:23:24 -0700 (PDT) (envelope-from matt@ARPA.MAIL.NET) Received: (qmail 28485 invoked by uid 1000); 6 Jul 2000 18:23:22 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 6 Jul 2000 18:23:22 -0000 Date: Thu, 6 Jul 2000 14:23:20 -0400 (EDT) From: Matt Heckaman X-Sender: matt@epsilon.lucida.qc.ca To: Brett Glass Cc: security@FreeBSD.ORG Subject: Re: ftpd and setproctitle() In-Reply-To: <4.3.2.7.2.20000706113724.04789470@localhost> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Spam-Rating: localhost 1.6.2 0/1000/N Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 6 Jul 2000, Brett Glass wrote: ... : Since the 2.x and 3.x sources are now offline, and most users do not : install full source, it may be difficult to close the hole on many : users' systems if it exists in older versions of FreeBSD. - From 3.4-stable as of Feb 14 2000: matt[alpha]:/usr/src/libexec/ftpd> grep setproctitle ftpd.c * Save start and extent of argv for setproctitle. setproctitle("%s", proctitle); setproctitle("%s", proctitle); setproctitle("%s", proctitle); setproctitle(const char *fmt, ...) setproctitle(fmt, va_alist) : --Brett * Matt Heckaman - mailto:matt@lucida.qc.ca http://www.lucida.qc.ca/ * * GPG fingerprint - A9BC F3A8 278E 22F2 9BDA BFCF 74C3 2D31 C035 5390 * -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.1 (FreeBSD) Comment: http://www.lucida.qc.ca/pgp iD8DBQE5ZM6ZdMMtMcA1U5ARAnzVAJ99cwUKz9RETchPZuwHoNSyo0gBOACfVnmF tE4KosDOZGprTGWPhgpNCnk= =Sbo1 -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message