From owner-freebsd-ports@FreeBSD.ORG Mon Aug 18 05:09:36 2003 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3A18737B401; Mon, 18 Aug 2003 05:09:36 -0700 (PDT) Received: from postoffice.e-easy.com.au (eth0.lnk.e-easy.com.au [203.31.73.253]) by mx1.FreeBSD.org (Postfix) with ESMTP id F081643F93; Mon, 18 Aug 2003 05:09:33 -0700 (PDT) (envelope-from chris@e-easy.com.au) Received: from postoffice.aims.com.au (nts-ts1.aims.private [192.168.10.2]) by postoffice.e-easy.com.au with ESMTP id h7IC9Npp074198; Mon, 18 Aug 2003 22:09:23 +1000 (EST) (envelope-from chris@e-easy.com.au) Received: from ntsts1 by aims.com.au (MDaemon.PRO.v6.8.4.R) with ESMTP id 26-md50000000223.tmp; Mon, 18 Aug 2003 21:38:40 +1000 From: "Chris Knight" To: "'Alexander Leidinger'" Date: Mon, 18 Aug 2003 21:38:39 +1000 Message-ID: <040d01c3657d$4566d3b0$020aa8c0@aims.private> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <20030818131951.5690fa0e.Alexander@Leidinger.net> X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4925.2800 Importance: Normal X-Spam-Processed: aims.com.au, Mon, 18 Aug 2003 21:38:40 +1000 (not processed: spam filter disabled) X-Return-Path: chris@e-easy.com.au X-Virus-Scanned: by amavisd-milter (http://amavis.org/) X-Spam-Status: No, hits=-4.2 required=4.5 tests=AWL,BAYES_10,IN_REP_TO,QUOTED_EMAIL_TEXT version=2.55 X-Spam-Checker-Version: SpamAssassin 2.55 (1.174.2.19-2003-05-19-exp) cc: ports@freebsd.org cc: audit@freebsd.org Subject: RE: SecFix for databases/firebird, please review X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Aug 2003 12:09:36 -0000 Howdy, > -----Original Message----- > From: owner-freebsd-audit@freebsd.org On Behalf Of Alexander Leidinger > Sent: Monday, 18 August 2003 21:20 > To: Chris Knight > Cc: ports@freebsd.org; audit@freebsd.org > Subject: Re: SecFix for databases/firebird, please review > > > On Mon, 18 Aug 2003 11:57:08 +1000 > "Chris Knight" wrote: > > > > [snip] > > That's what I'm currently in the process of doing - passing in the > > size of the buffer to gds__prefix. It gets called with buffer > > lengths of 64, 100, 128, 256 and 1024. > > Ugh... seems I've missed some calls... > Yeah, it's not an easy fix, unfortunately :-( > > I'm probably going to have to use strncat to keep it a bit more > > portable. > > That's the reason why I haven't used strlcat... > Cool. > > I don't particularly like it, but I'm inclined to agree with > > you - the port probably should go. I can always maintain the 1.0.x > > port outside of the FreeBSD Ports Tree and make it available on my > > Website with lots of warning labels. I'll get onto the Firebird > > 1.5 port pronto, which > > We can add the warning labels also to the in tree port... > Possibly, but if Jacques or Kris insist on it going, then I'm not going to waste my time and theirs arguing about it. > > should end this issue and put me out of my current misery. > > And you're sure 1.5 is better in this regard? > Yes, just. > Bye, > Alexander. > Regards, Chris Knight Systems Administrator E-Easy Tel: +61 3 6334 6664 Fax: +61 3 6331 7032 Mob: +61 419 528 795 Web: http://www.e-easy.com.au