From owner-freebsd-security@FreeBSD.ORG  Fri Dec  9 12:24:41 2011
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B5A5E106564A
	for <freebsd-security@freebsd.org>;
	Fri,  9 Dec 2011 12:24:41 +0000 (UTC)
	(envelope-from gabor@zahemszky.hu)
Received: from default-smtp.integrity.hu (default-smtp.integrity.hu
	[212.52.165.203])
	by mx1.freebsd.org (Postfix) with ESMTP id 6EBF28FC12
	for <freebsd-security@freebsd.org>;
	Fri,  9 Dec 2011 12:24:41 +0000 (UTC)
Received: by smtp.integrity.hu (Postfix, from userid 10000)
	id 1F1A1134678D; Fri,  9 Dec 2011 13:24:40 +0100 (CET)
Received: from webmail2.integrity.hu (mail-fe-1.integrity.hu [10.1.64.120])
	(Authenticated sender: gabor@zahemszky.hu)
	by smtp.integrity.hu (Postfix) with ESMTPA id 79A761346707
	for <freebsd-security@freebsd.org>;
	Fri,  9 Dec 2011 13:24:39 +0100 (CET)
Received: from M2s+KtN04talJ9t9azN057FB+ZVZ7PTER5laDTQ/5qi8hVicX2C4bA==
	(uPHzQytkKCXOltmF39jd8IAxrEecM26P) by webmail2.integrity.hu
	with HTTP (HTTP/1.1 POST); Fri, 09 Dec 2011 13:24:39 +0100
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8;
 format=flowed
Content-Transfer-Encoding: 8bit
Date: Fri, 09 Dec 2011 13:24:39 +0100
From: gabor@zahemszky.hu
To: <freebsd-security@freebsd.org>
In-Reply-To: <4EE1C933.4020001@rdtc.ru>
References: <4ED68B4D.4020004@sentex.net> "<4ED69B7E.50505@frasunek.com>"
	<4ED6C3C6.5030402@delphij.net> "<4ED6D1CD.9080700@sentex.net>"
	<4ED6D577.9010007@delphij.net> "\"<4ED6DA75.30604@sentex.net>"
	<4EE131B8.7040000@sentex.net>"
	<c081e4612df771d59c1dc2870d99d7b9@zahemszky.hu>
	<CAGMYy3vZ9CjuboiQsuGnYLZPpbAMMCQScsu9toXLpOyWAdAA3A@mail.gmail.com>
	<4EE1C933.4020001@rdtc.ru>
Message-ID: <c01e78480b76e1fc000c282fca4c4269@zahemszky.hu>
X-Sender: gabor@zahemszky.hu
User-Agent: Roundcube Webmail/0.5.1
X-Virus-Scanned: clamav-milter 0.97 at mail-autosubmit
X-Virus-Status: Clean
Subject: Re: ftpd security issue ?
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Dec 2011 12:24:41 -0000

 On Fri, 09 Dec 2011 15:39:15 +0700, Eugene Grosbein wrote:
> 09.12.2011 15:25, Xin LI пишет:
>> On Fri, Dec 9, 2011 at 12:04 AM,  <gabor@zahemszky.hu> wrote:
>>> Hi!
>>>
>>> Are the following steps enough to prevent me?
>>>
>>> # for user in user1 user2 .... ; do
>>> mkdir -p ~$user/lib ~$user/usr/lib ~$user/etc
>>> chflags sunlink,schg ~$user/lib ~$user/usr ~$user/usr/lib 
>>> ~$user/etc
>>> done
>>> #
>>
>> Yes that should be sufficient workaround.
>
> Why /lib and /usr/lib only?

 ??? /lib, /usr/lib and /etc.

 Which directory is missing?

 Gábor < Gabor at Zahemszky dot HU >