Date: Thu, 30 Mar 2000 18:31:53 +0200 From: "Benjamin Lutz" <benlutz@datacomm.ch> To: <freebsd-questions@freebsd.org> Subject: RE: Lynx forbidden Message-ID: <NDBBKGBBKDPDNFIFCJEJMENJCCAA.benlutz@datacomm.ch> In-Reply-To: <200003301605.LAA20134@radagast.wizard.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Well, I still have a question though: Why was Lynx marked "forbidden" at all, leading to misunderstandings? Or the standard unix user expected to be able to do this basic kind of "hacking"? Have a lot of fun, Ben >>> I must be missing something obvious here. The LYNX port is >>> marked ``forbidden'' because of its vulnerability to >>> buffer overflow exploits; we have seen the security >>> advisory, and the port's make file refuses to build. >> >> [...] >> >>> It seems to me that the better course would be to allow >>> those who wish to go ahead and install it and take their=20 >>> chances. >> >> You can. Just comment out the: >> >> FORBIDDEN=3D "Riddled with buffer overflows exploitable by a malicious= >> server >> to execute code as the local user." >> >> line in /usr/ports/www/lynx/Makefile and go for it. >> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?NDBBKGBBKDPDNFIFCJEJMENJCCAA.benlutz>