From owner-freebsd-hackers Wed Oct 8 23:32:46 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id XAA12171 for hackers-outgoing; Wed, 8 Oct 1997 23:32:46 -0700 (PDT) (envelope-from owner-freebsd-hackers) Received: from sax.sax.de (sax.sax.de [193.175.26.33]) by hub.freebsd.org (8.8.7/8.8.7) with SMTP id XAA12151 for ; Wed, 8 Oct 1997 23:32:43 -0700 (PDT) (envelope-from j@uriah.heep.sax.de) Received: (from uucp@localhost) by sax.sax.de (8.6.12/8.6.12-s1) with UUCP id IAA09534 for freebsd-hackers@freebsd.org; Thu, 9 Oct 1997 08:32:42 +0200 Received: (from j@localhost) by uriah.heep.sax.de (8.8.7/8.8.5) id IAA18735; Thu, 9 Oct 1997 08:31:40 +0200 (MET DST) Message-ID: <19971009083140.LQ20996@uriah.heep.sax.de> Date: Thu, 9 Oct 1997 08:31:40 +0200 From: j@uriah.heep.sax.de (J Wunsch) To: freebsd-hackers@freebsd.org (FreeBSD hackers) Subject: Re: L0pht Advisory: IMAP4rev1 imapd server References: X-Mailer: Mutt 0.60_p2-3,5,8-9 Mime-Version: 1.0 X-Phone: +49-351-2012 669 X-PGP-Fingerprint: DC 47 E6 E4 FF A6 E9 8F 93 21 E0 7D F9 12 D6 4E Reply-To: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch) In-Reply-To: ; from We got Food - Fuel - Ice-cold Beer - and X.509 certificates on Oct 8, 1997 16:17:54 +0100 Sender: owner-freebsd-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk As We got Food - Fuel - Ice-cold Beer - and X.509 certificates wrote: > Scenario: > > It is possible to crash the imapd server in several possible places. > Due to the lack of handling for the SIGABRT signal and the nature > of the IMAP protocol in storing folders locally on the server; a core dump > is produced in the users current directory. This core dump contains the > password and shadow password files from the system. I don't think that's a big problem for FreeBSD. Either, the imapd runs with effective and real UID of root, but then the core file will only be readable by root, or (it was setuid) it's not supposed to drop a core file at all. Somebody who's actually running imapd might test it anyway. -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)