From owner-freebsd-commit  Sun Oct 22 14:44:04 1995
Return-Path: owner-commit
Received: (from root@localhost)
          by freefall.freebsd.org (8.6.12/8.6.6) id OAA08576
          for freebsd-commit-outgoing; Sun, 22 Oct 1995 14:44:04 -0700
Received: (from root@localhost)
          by freefall.freebsd.org (8.6.12/8.6.6) id OAA08538
          for cvs-all-outgoing; Sun, 22 Oct 1995 14:43:53 -0700
Received: (from root@localhost)
          by freefall.freebsd.org (8.6.12/8.6.6) id OAA08519
          for cvs-user-outgoing; Sun, 22 Oct 1995 14:43:47 -0700
Received: from sequent.kiae.su (sequent.kiae.su [144.206.136.6])
          by freefall.freebsd.org (8.6.12/8.6.6) with SMTP id OAA08489
          ; Sun, 22 Oct 1995 14:43:35 -0700
Received: by sequent.kiae.su id AA17995
  (5.65.kiae-2 ); Mon, 23 Oct 1995 01:42:45 +0400
Received: by sequent.KIAE.su (UUMAIL/2.0); Mon, 23 Oct 95 01:42:45 +0300
Received: (from ache@localhost) by ache.dialup.demos.ru (8.6.11/8.6.9) id AAA13358; Mon, 23 Oct 1995 00:39:27 +0300
To: "Justin T. Gibbs" <gibbs@freefall.freebsd.org>
Cc: CVS-commiters@freefall.freebsd.org,
        "Andrey A. Chernov" <ache@freefall.freebsd.org>,
        cvs-user@freefall.freebsd.org
References: <199510222126.OAA17661@aslan.cdrom.com>
In-Reply-To: <199510222126.OAA17661@aslan.cdrom.com>;
    from "Justin T. Gibbs" at Sun, 22 Oct 1995 14:26:42 -0700
Message-Id: <aBEehYmW2q@ache.dialup.demos.ru>
Organization: Olahm Ha-Yetzirah
Date: Mon, 23 Oct 1995 00:39:26 +0300 (MSK)
X-Mailer: Mail/@ [v2.40 FreeBSD]
From: =?KOI8-R?Q?=E1=CE=C4=D2=C5=CA_=FE=C5=D2=CE=CF=D7?=
    (aka Andrey A. Chernov, Black Mage) <ache@astral.msk.su>
X-Class: Fast
Subject: Re: cvs commit: src/secure/libexec/telnetd sys_term.c
Lines: 19
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Content-Length: 917
Sender: owner-commit@FreeBSD.org
Precedence: bulk

In message <199510222126.OAA17661@aslan.cdrom.com> Justin T. Gibbs
    writes:

>Perhaps we should mention it to the author.  Don't we also have a security
>problem in login since it is shared?  I would expect any user logged into
>your system to be able to become any other user by using their own crypt
>library.  Its not like our library sources aren't availible. :)

All suid programs unsetenv this LD_* cruft in rtld.
It isn't so only for programs started with same uid as suid,
i.e. root telnetd starts root login.
It seems that telnetd is only one who provide whole user
environment passing, but I isn't 100% shure.

-- 
Andrey A. Chernov        : And I rest so composedly,  /Now, in my bed,
ache@astral.msk.su       : That any beholder  /Might fancy me dead -
http://dt.demos.su/~ache : Might start at beholding me,  /Thinking me dead.
RELCOM Team,FreeBSD Team :         E.A.Poe         From "For Annie" 1849