From owner-freebsd-security@FreeBSD.ORG  Mon Aug  4 07:59:16 2003
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4C10637B401
	for <security@freebsd.org>; Mon,  4 Aug 2003 07:59:16 -0700 (PDT)
Received: from munk.nu (213-152-51-194.dsl.eclipse.net.uk [213.152.51.194])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A068C43FCB
	for <security@freebsd.org>; Mon,  4 Aug 2003 07:59:14 -0700 (PDT)
	(envelope-from munk@munk.nu)
Received: from munk by munk.nu with local (Exim 4.20)
	id 19jgnp-000ANW-Lf
	for security@freebsd.org; Mon, 04 Aug 2003 15:59:13 +0100
Date: Mon, 4 Aug 2003 15:59:13 +0100
From: Jez Hancock <jez.hancock@munk.nu>
To: security@freebsd.org
Message-ID: <20030804145913.GA39691@users.munk.nu>
Mail-Followup-To: security@freebsd.org
References: <5.0.2.1.1.20030804004417.02bcc920@popserver.sfu.ca>
	<200308041010.52904.lists@chrishowells.co.uk>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200308041010.52904.lists@chrishowells.co.uk>
User-Agent: Mutt/1.4.1i
Sender: User Munk <munk@munk.nu>
Subject: Re: FreeBSD Security Advisory FreeBSD-SA-03:08.realpath
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Aug 2003 14:59:16 -0000

On Mon, Aug 04, 2003 at 10:10:52AM +0100, Chris Howells wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Hi,
> 
> On Monday 04 August 2003 08:54, Colin Percival wrote:
> > ? ?Affected applications which were statically linked to the vulnerable
> > code would still need to be recompiled.
> 
> I'm just trying to work out which applications on my system are statically
> linked or not. Is using ldd the best (well, quickest I suppose) way?:
I've just used this:


#!/bin/sh
cd /var/db/pkg
for port in `ls -1d *`
do
	info=`pkg_info -L $port`
	files=`echo $info | cut -f3 -d:`
	for file in $files
	do
		if [ -x $file ]; then
			linked=`file $file | grep "statically linked"`
			if [ -n "$linked" ];then
				echo "$port contains statically linked files ($file)"
				break 
			fi
		fi
	done
done

seems to do the trick ok :)

-- 
Jez

http://www.munk.nu/