Re: SunOS syslog() fix, finally...

casperHolland.Sun.COM

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Michael/Miguel Sanchez: "Re: Telnet attack on SGI"
• Previous message: Michael/Miguel Sanchez: "Re: Telnet attack on SGI"
• In reply to: Jake Luck: "Re: SunOS syslog() fix, finally..."
• Next in thread: Brett Lymn: "Re: SunOS syslog() fix, finally..."

>> Sendmail doesn't need to be recompiled as long as it is dynamically
>> linked.
>> If, however, you installed you own version of sendmail and linked it
>> statically against libc.so, you need to recompile & relink.
>
>yeah, but what about /usr/sbin/ufsrestore ?
>
>it is statically linked, utilizes syslog, and suid root.


This may not necessarily be a problem.

In my first examination I found that the syslog() calls in ufsrestore
cannot be passed random strings, but if you have different information,
please tell.

The patch also doesn't include "/sbin/su", though the README says it is
included.


Casper

• Next message: Michael/Miguel Sanchez: "Re: Telnet attack on SGI"
• Previous message: Michael/Miguel Sanchez: "Re: Telnet attack on SGI"
• In reply to: Jake Luck: "Re: SunOS syslog() fix, finally..."
• Next in thread: Brett Lymn: "Re: SunOS syslog() fix, finally..."