Date: Fri, 6 Oct 2006 17:59:02 -0400 From: Kris Kennaway <kris@obsecurity.org> To: Andrew Pantyukhin <infofarmer@FreeBSD.org> Cc: hackers@FreeBSD.org, secteam@freebsd.org Subject: Re: Tracing binaries statically linked against vulnerable libs Message-ID: <20061006215902.GA21109@xor.obsecurity.org> In-Reply-To: <cb5206420610052235t78033639vaa90429f07581078@mail.gmail.com> References: <cb5206420610052235t78033639vaa90429f07581078@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--huq684BweRXVnRxX Content-Type: text/plain; charset=us-ascii Content-Disposition: inline On Fri, Oct 06, 2006 at 09:35:31AM +0400, Andrew Pantyukhin wrote: > I wonder if there is a way to deal with statically linked binaries, > which use vulnerable libraries. The best way is to track them down and force them all to link dynamically; static linking is a PITA from a systems management point of view :) Kris --huq684BweRXVnRxX Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFFJtGlWry0BWjoQKURAnRMAKCxe377BTzaojkdagPmWJIX0PyoiQCg8EaU yUX3SCKIvaXgQOAsdVcx27A= =Rwyw -----END PGP SIGNATURE----- --huq684BweRXVnRxX--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061006215902.GA21109>