|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: David Schultz (dschultz_at_uclink.Berkeley.EDU)
Date: Mon Jan 20 2003 - 18:51:08 CST
Thus spake Anthony Schneider <anthony
x-anthony.com>:
> statically linked? is /sbin/nologin not a shell script anymore?
Sorry, I was thinking of OpenBSD, in which /sbin/nologin is a
shell script. In the FreeBSD version, you are probably safe from
environment poisoning attacks provided that your /bin/sh is
statically linked. It would be safer to use /usr/bin/false or a
simple C program, though, since a lot in libc depends on the
environment.
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]