Date: Tue, 21 Sep 1999 20:09:41 -0700 (PDT) From: Kris Kennaway <kris@hub.freebsd.org> To: TAOKA Satoshi <taoka@infonets.hiroshima-u.ac.jp> Cc: ports@freebsd.org Subject: Re: ports/13809: new port: sysutils/wmbattery Message-ID: <Pine.BSF.4.10.9909212007460.26241-100000@hub.freebsd.org> In-Reply-To: <19990921104717Q.taoka@infonets.hiroshima-u.ac.jp>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 21 Sep 1999, TAOKA Satoshi wrote: > > > Better make sure it's secure - many of these wm* utilities share a common > > > heritage, and at least one (wmmon) contained buffer overflows from > > > command-line arguments, and even processed arbitrary shell commands in a > > > dotfile as the setuid user. :-( > > > > Well.. not much I can do about it right now since I don't even know what > > programming habits/mistakes lead to buffer overflows.. meaning I can't look for > > buffer overflows in wmbattery. > > I don't understand, too. Well, given the rampaging lack of code quality in many of the wm* applets it worries me, but I don't have the time to look over the code. I guess that means I should shut up. Kris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9909212007460.26241-100000>