From owner-freebsd-security Mon Feb 21 22:52:13 2000 Delivered-To: freebsd-security@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 8DFF837B5D1; Mon, 21 Feb 2000 22:52:11 -0800 (PST) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id WAA65616; Mon, 21 Feb 2000 22:52:11 -0800 (PST) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Mon, 21 Feb 2000 22:52:11 -0800 (PST) From: Kris Kennaway To: Masafumi NAKANE Cc: imp@village.org, 3APA3A@SECURITY.NNOV.RU, kris@hub.freebsd.org, serg@dor.zaural.ru, freebsd-security@FreeBSD.ORG, asami@freebsd.org Subject: Re: Re[2]: delegate buffer overflow (ports) In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, 22 Feb 2000, Masafumi NAKANE wrote: > 2. When a user simply types ``make'' or ``make install'' or whatever, > show something like: > > ********************************************************************** > * WARNING! WARNING! WARNING! WARNING! * > * This program has known security problems. * I'd change the above to "known security problems which may allow a remote attacker to take control of your machine. See FreeBSD security advisory 00:04 for more information.". > * It is strongly recommended that you do not use this program. * > * * > * If you would like to use this program despite the danger, * > * run make with ``FORCE_BUILD=YES''. * > ********************************************************************** With something like this in place I have no objections. Kris ---- "How many roads must a man walk down, before you call him a man?" "Eight!" "That was a rhetorical question!" "Oh..then, seven!" -- Homer Simpson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message