Date: Thu, 06 Jul 2000 13:28:33 -0600 From: Brett Glass <brett@lariat.org> To: Matt Heckaman <matt@ARPA.MAIL.NET> Cc: security@FreeBSD.ORG Subject: Re: ftpd and setproctitle() Message-ID: <4.3.2.7.2.20000706132133.04a94ad0@localhost> In-Reply-To: <Pine.BSF.4.21.0007061422400.28337-100000@epsilon.lucida.qc .ca> References: <4.3.2.7.2.20000706113724.04789470@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
Thank you! I've checked 3.1, and it's OK too. Theo just wrote
to say that he thinks the bug originated in BSD 4.4-Lite. (And,
I guess, has been around since that time due to the wonderful
error-encouraging nature of the C language -- Sigh.)
I'm hoping that the bug was nailed prior to 2.2.8, which a number
of sites with an "if it ain't broke, don't fix it" policy are still
running.
Anyone have a 2.2.8 CD handy? Mine's long gone.
--Brett
At 12:23 PM 7/6/2000, Matt Heckaman wrote:
>matt[alpha]:/usr/src/libexec/ftpd> grep setproctitle ftpd.c
> * Save start and extent of argv for setproctitle.
> setproctitle("%s", proctitle);
> setproctitle("%s", proctitle);
> setproctitle("%s", proctitle);
>setproctitle(const char *fmt, ...)
>setproctitle(fmt, va_alist)
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.2.7.2.20000706132133.04a94ad0>