Date: Thu, 31 Aug 1995 14:37:49 -0700 (PDT) From: "Rodney W. Grimes" <rgrimes@gndrsh.aac.dev.com> To: peter@haywire.dialix.com (Peter Wemm) Cc: freebsd-security@freebsd.org Subject: Re: Eric Allman's syslog.c fixes Message-ID: <199508312137.OAA12750@gndrsh.aac.dev.com> In-Reply-To: <42548i$agm$1@haywire.DIALix.COM> from "Peter Wemm" at Sep 1, 95 03:58:10 am
next in thread | previous in thread | raw e-mail | index | archive | help
> > Eric Allman is running a new syslog.c through the mill at the > moment. It'll be the one published in the RSN CERT advisory I presume. > > It's thought to be bomproof on 4.4BSD systems (it uses vsnprintf), and > the only holdup is portability to other OS's. > > I keep a pretty close eye on this area, as it's sendmail related. Is > it worth bringing in the currently 'endorsed' version, and updating it > to the CERT version if there are any changes later? Yes, that would give Eric additional test data and eyes looking at the solution. -- Rod Grimes rgrimes@gndrsh.aac.dev.com Accurate Automation Company Reliable computers for FreeBSD
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199508312137.OAA12750>