Date: Fri, 20 Oct 2000 17:27:21 +0200 From: alex@big.endian.de (Alexander Langer) To: Kris Kennaway <kris@citusc.usc.edu> Cc: audit@FreeBSD.ORG Subject: Re: telnetd patch Message-ID: <20001020172721.A43072@cichlids.cichlids.com> In-Reply-To: <20001015165612.A17989@citusc17.usc.edu>; from kris@citusc.usc.edu on Sun, Oct 15, 2000 at 04:56:12PM -0700 References: <20001015165612.A17989@citusc17.usc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Thus spake Kris Kennaway (kris@citusc.usc.edu): > I think I caught all of the environment variables which the telnet > binary listens to..LOCALDOMAIN and RES_OPTIONS are potential problems, > but I don't really know what the impact of those are. LOCALDOMAIN > seems to allow you to override what the default domain the resolver > uses is, which may or may not be an issue for telnetd. Could someone > check? If there is a way to exploit the ENV of the superuser, then it is, since LOCALDOMAIN affects such things as you mentioned in the answer to Will's mail. However, I'm not sure if setting these to "" is the correct way, since it just breaks the behaviour. Users expect the DNS library to pay attention to LOCALDOMAIN and RES_OPTIONS. Alex To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001020172721.A43072>