From owner-freebsd-security  Mon Aug  4 10:04:06 1997
Return-Path: <owner-freebsd-security>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id KAA11286
          for security-outgoing; Mon, 4 Aug 1997 10:04:06 -0700 (PDT)
Received: from kithrup.com (kithrup.com [205.179.156.40])
          by hub.freebsd.org (8.8.5/8.8.5) with SMTP id KAA11275
          for <security@FreeBSD.ORG>; Mon, 4 Aug 1997 10:04:00 -0700 (PDT)
Received: (from sef@localhost) by kithrup.com (8.6.8/8.6.6) id KAA16417; Mon, 4 Aug 1997 10:03:55 -0700
Date: Mon, 4 Aug 1997 10:03:55 -0700
From: Sean Eric Fagan <sef@Kithrup.COM>
Message-Id: <199708041703.KAA16417@kithrup.com>
To: bde@zeta.org.au, tqbf@enteract.com
Subject: Re: Proposed alternate patch for the rfork vulnerability
Cc: security@FreeBSD.ORG
Sender: owner-freebsd-security@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

I'm sorry, Bruce, but having the file descriptor sharing break on
exec is the ONLY way to have it make sense, let alone be secure.

Note that exit closes file descriptors.  So I guess exit should close
all file descriptors for all processes, huh?