NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Linux Security Auditing Project> 2000-q2

Subject: Evilness in gssftp/ftpd
From: lamonticopyright.com
Date: Thu Jun 29 2000 - 18:45:33 CDT

Next message: Kev: "Re: Evilness in gssftp/ftpd"
Previous message: lamonticopyright.com: "Evilness in krshd.c"
In reply to: lamonticopyright.com: "Evilness in krshd.c"
Next in thread: Kev: "Re: Evilness in gssftp/ftpd"
Reply: lamonticopyright.com: "Evilness in gssftp/ftpd"
Reply: Kev: "Re: Evilness in gssftp/ftpd"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

krb5-1.1.1/src/appl/gssftp/ftpd

check out secure_error(), reply(), lreply(), secure_fprintf() and
retrieve()

i haven't finished auditing this one, so i don't know if any of it is
exploitable.

Next message: Kev: "Re: Evilness in gssftp/ftpd"
Previous message: lamonticopyright.com: "Evilness in krshd.c"
In reply to: lamonticopyright.com: "Evilness in krshd.c"
Next in thread: Kev: "Re: Evilness in gssftp/ftpd"
Reply: lamonticopyright.com: "Evilness in gssftp/ftpd"
Reply: Kev: "Re: Evilness in gssftp/ftpd"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]