From owner-freebsd-security  Thu May 30  5:10:56 2002
Delivered-To: freebsd-security@freebsd.org
Received: from gw.nectar.cc (gw.nectar.cc [208.42.49.153])
	by hub.freebsd.org (Postfix) with ESMTP id ADE4537B400
	for <security@freebsd.org>; Thu, 30 May 2002 05:10:51 -0700 (PDT)
Received: from madman.nectar.cc (madman.nectar.cc [10.0.1.111])
	by gw.nectar.cc (Postfix) with ESMTP
	id 56A9545; Thu, 30 May 2002 07:10:51 -0500 (CDT)
Received: from madman.nectar.cc (localhost [IPv6:::1])
	by madman.nectar.cc (8.12.3/8.11.6) with ESMTP id g4UCApfo081291;
	Thu, 30 May 2002 07:10:51 -0500 (CDT)
	(envelope-from nectar@madman.nectar.cc)
Received: (from nectar@localhost)
	by madman.nectar.cc (8.12.3/8.12.3/Submit) id g4UCAofo081290;
	Thu, 30 May 2002 07:10:50 -0500 (CDT)
Date: Thu, 30 May 2002 07:10:50 -0500
From: "Jacques A. Vidrine" <nectar@freebsd.org>
To: cjclark@alum.mit.edu
Cc: security@freebsd.org
Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:27.rc
Message-ID: <20020530121050.GB81267@madman.nectar.cc>
References: <200205291636.g4TGaZX40801@freefall.freebsd.org> <20020529133852.B12700@blossom.cjclark.org> <20020529210334.GA5544@madman.nectar.cc> <20020529154113.D12700@blossom.cjclark.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20020529154113.D12700@blossom.cjclark.org>
User-Agent: Mutt/1.3.99i
X-Url: http://www.nectar.cc/
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

On Wed, May 29, 2002 at 03:41:13PM -0700, Crist J. Clark wrote:
> I guess I should have explained my concern more. I'm thinking some
> l33t kid out there is going to look at that and say, "I can just do,
> 
>   # echo -e "/.X11-unix/s/^/#/\nw\nq\n" | /bin/ed -s /etc/rc
> 
> And not have to worry about all of that /bin/sh stuff at the front..."
> and thus outsmart himself. He wouldn't realize you are counting on
> features of the echo builtin in sh(1) and not /bin/echo or the csh(1)
> echo builtin. The above commands don't work as desired for a
> non-sh(1)-ish shell.
> 
> I'm curious to see how many posts to the list might appear as people
> do just that.

The same logic could be applied to patches, with absurd results.

You are describing an administrator who knows just enough to be
dangerous.  We can't help him.

We aim to provide directions in advisories that are as cut-n-paste as
possible.

Cheers,
-- 
Jacques A. Vidrine <n@nectar.cc>                 http://www.nectar.cc/
NTT/Verio SME          .     FreeBSD UNIX     .       Heimdal Kerberos
jvidrine@verio.net     .  nectar@FreeBSD.org  .          nectar@kth.se

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message