Date: Fri, 11 Sep 1998 09:19:42 +1200 (NZST) From: Andrew McNaughton <andrew@squiz.co.nz> To: Studded <Studded@dal.net> Cc: Michael Richards <026809r@dragon.acadiau.ca>, security@FreeBSD.ORG Subject: terminal escape exploit (was Re: cat exploit) Message-ID: <Pine.BSF.3.96.980911091351.5407B-100000@aniwa.sky> In-Reply-To: <35F818CA.8647A116@dal.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 10 Sep 1998, Studded wrote: > It seems to me that a lot of people missed the point of one of the > warnings that someone else posted in response actually. Don't use cat > routinely to view files. Use more, or better yet less since less doesn't > view binary files by default. It's not just cat that you've got to worry about. tail is another one. How many people routinely use 'tail -f' to monitor log info that includes potentially tainted content. The problem is not cat. It's xterm and other similar terminal programs. Andrew To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980911091351.5407B-100000>