Date: Wed, 16 Oct 1996 15:15:22 -0600 (MDT) From: Marc Slemko <marcs@znep.com> To: "az.com" <yankee@lucy.az.com> Cc: freebsd-security@FreeBSD.org Subject: Re: BUG IN FTPD Message-ID: <Pine.BSF.3.95.961016151102.19361B-100000@alive.ampr.ab.ca> In-Reply-To: <Pine.BSF.3.91.961016100637.4979A-100000@lucy.az.com>
next in thread | previous in thread | raw e-mail | index | archive | help
No. Things like login and ftpd are not started from a shell generally, so all thaat would do is stop coredumps for things started from csh, when csh read /etc/csh.cshrc, and if the user didn't override it. Stopping programs from core dumping (by something similar to the patch I suggested) does seem to fix the obvious ways of exploiting the problem, since you can't attach a debugger to a process that has changed UIDs, but a better solution is to have the appropriate buffers zeroed so the information just isn't there.... On Wed, 16 Oct 1996, az.com wrote: > > > would > > limit coredumpsize 0 > > in /etc/csh.cshrc > > also offer any relief? > > > Dan >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.95.961016151102.19361B-100000>