From owner-freebsd-security  Wed Jul 24 12:51:32 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id MAA11080
          for security-outgoing; Wed, 24 Jul 1996 12:51:32 -0700 (PDT)
Received: from server.fasts.lv (root@server.fasts.lv [194.8.13.242])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id MAA11039;
          Wed, 24 Jul 1996 12:50:27 -0700 (PDT)
Received: from server.fasts.lv (vitjok@server.fasts.lv [194.8.13.242]) by server.fasts.lv (8.7.5/8.7.3) with SMTP id WAA01536; Wed, 24 Jul 1996 22:47:56 GMT
Date: Wed, 24 Jul 1996 22:47:56 +0000 ()
From: Victor Rotanov <vitjok@fasts.lv>
To: Gary Palmer <gpalmer@FreeBSD.org>
cc: freebsd-security@FreeBSD.org
Subject: Re: unofficial rlogin security patch 
In-Reply-To: <7556.838237326@orion.webspan.net>
Message-ID: <Pine.BSF.3.91.960724224208.1446A-100000@server.fasts.lv>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-security@FreeBSD.org
X-Loop: FreeBSD.org
Precedence: bulk



Hello Gary.

On Wed, 24 Jul 1996, Gary Palmer wrote:

> Victor Rotanov wrote in message ID
> <Pine.BSF.3.91.960724215007.1220A-100000@server.fasts.lv>:
> > 
> > Hello.
> > 
> > Here's the patch:
> 
> What exactly is this meant to do, pray tell?

This will not allow buffer overrun caused by setting TERM environment 
variable to something longer than 1024 bytes.

> 
> Gary
> --
> Gary Palmer                                          FreeBSD Core Team Member
> FreeBSD: Turning PC's into workstations. See http://www.FreeBSD.ORG/ for info
> 

Thanks,
	vitjok.