Date: 01 May 1997 23:08:07 +0200 From: joda@pdc.kth.se (Johan Danielsson) To: Bradley Dunn <bradley@dunn.org> Cc: freebsd-security@freebsd.org Subject: Re: Telnetd problem? Message-ID: <xofk9liq4so.fsf@blubb.pdc.kth.se> In-Reply-To: Bradley Dunn's message of Thu, 1 May 1997 16:54:39 -0400 (EDT) References: <Pine.BSF.3.96.970501163938.16494E-100000@ns2.harborcom.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Bradley Dunn <bradley@dunn.org> writes:
> char speed[128];
> ...
> sprintf(speed, "%s/%d", (cp = getenv("TERM")) ? cp : "",
> (def_rspeed > 0) ? def_rspeed : 9600);
>
> This code is identical to the problematic kerberos code that was in
> the SNI advisory.
Yes, but this piece of code (at least in my telnetd source) is only
used if your login doesn't grok `-f'.
/Johan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xofk9liq4so.fsf>