Date: Mon, 20 Jan 2003 16:51:08 -0800 From: David Schultz <dschultz@uclink.Berkeley.EDU> To: Anthony Schneider <anthony@x-anthony.com> Cc: zhuravlev alexander <zaa@ulstu.ru>, Oleg Shevtsov <sat@orion.interexc.com>, security@FreeBSD.ORG Subject: Re: your mail Message-ID: <20030121005108.GA4575@HAL9000.homeunix.com> In-Reply-To: <20030120235152.GA20708@x-anthony.com> References: <20030120101323.GA371@interexc.com> <20030120102235.GA45357@hp.ulstu.ru> <20030120225609.GB3668@HAL9000.homeunix.com> <20030120235152.GA20708@x-anthony.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Thus spake Anthony Schneider <anthony@x-anthony.com>: > statically linked? is /sbin/nologin not a shell script anymore? Sorry, I was thinking of OpenBSD, in which /sbin/nologin is a shell script. In the FreeBSD version, you are probably safe from environment poisoning attacks provided that your /bin/sh is statically linked. It would be safer to use /usr/bin/false or a simple C program, though, since a lot in libc depends on the environment. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030121005108.GA4575>