Date: Thu, 24 May 2007 15:09:47 +0100 From: Tom Evans <tevans.uk@googlemail.com> To: des@des.no, freebsd-security@freebsd.org Subject: Re: [FreeBSD-Announce] FreeBSD Security Advisory FreeBSD-SA-07:04.file Message-ID: <1180015787.9846.22.camel@zoot.mintel.co.uk> In-Reply-To: <46559AAC.5030800@tomjudge.com> References: <46559AAC.5030800@tomjudge.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--=-T3fbTvum5BbzR916WGFq Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable > Subject: Re: [FreeBSD-Announce] FreeBSD Security Advisory=20 > FreeBSD-SA-07:04.file > Date: Thu, 24 May 2007 15:37:36 +0200 > From: Dag-Erling Sm=C3=B8rgrav <des@des.no> > To: Brian A. Seklecki <bseklecki@collaborativefusion.com> > CC: FreeBSD Security Advisories <security-advisories@freebsd.org>,=20 > freebsd-security@freebsd.org > References: <200705231619.l4NGJtHB017927@freefall.freebsd.org>=20 > <1179937542.1121.4.camel@soundwave.pgh.priv.collaborativefusion.com> >=20 > "Brian A. Seklecki" <bseklecki@collaborativefusion.com> writes: > > I'll have to check, but I doubt anything other than file(1) on > > production systems is linked against libmagic. This is safe to do in > > real-time afaik. ~BAS >=20 > AFAIK, Apache's mod_mime_magic either links against libmagic or against > its own copy of the same code. >=20 > DES I've had an initial look over mod_mime_magic.c in Apache 1.3.37 and 2.2.4 . Both are essentially the same module, just adjusted for the different APIs in 2.x. The module does not use libmagic directly, nor does it appear to include large portions of similar code. The history of the module indicates that it was derived from Ian Darwin's magic(1) posted to comp.source.unix in ~1987, which is where FreeBSD's magic(1) originated. However FreeBSD's magic notes that it was extensively rewritten since then, and I cannot personally identify similar parts of the code between file/magic.c and mod_mime_magic.c - but I am not a security expert. If someone more qualified than me has some time to look at whether mod_mime_magic is affected, I'd appreciate it greatly. Regards Tom --=-T3fbTvum5BbzR916WGFq Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) iD8DBQBGVZymlcRvFfyds/cRAuQSAKCi3h59aqco6jTdwKgWZzX5fv9xrgCgo2aG kgrw8xqQPzuhASjlQ9zulac= =lYgN -----END PGP SIGNATURE----- --=-T3fbTvum5BbzR916WGFq--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1180015787.9846.22.camel>