|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: suidperl exploit
From: Warner Losh (imp
village.org)Date: Thu Aug 10 2000 - 22:33:54 CDT
- Next message: Kris Kennaway: "Re: suidperl exploit"
- Previous message: Warner Losh: "Re: suidperl exploit"
- In reply to: Kris Kennaway: "Re: suidperl exploit"
- Next in thread: Warner Losh: "Re: suidperl exploit"
- Reply: Warner Losh: "Re: suidperl exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
In message
<Pine.BSF.4.21.0008101434470.54452-100000freefall.freebsd.org> Kris
Kennaway writes:
: I believe FreeBSD to be safe from this particular misfeature - FreeBSD's
: mail(1) program lives in another location, as already noted, and I don't
: even know if it supports the required features to exploit it.
We do support getting variables from the environment in our mail. We
need to look into all the implications. Of course, most programs on
the system use sendmail directly.
Warner
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Kris Kennaway: "Re: suidperl exploit"
- Previous message: Warner Losh: "Re: suidperl exploit"
- In reply to: Kris Kennaway: "Re: suidperl exploit"
- Next in thread: Warner Losh: "Re: suidperl exploit"
- Reply: Warner Losh: "Re: suidperl exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]