From owner-cvs-all  Fri Apr  6 11:30:37 2001
Delivered-To: cvs-all@freebsd.org
Received: from critter.freebsd.dk (critter.freebsd.dk [212.242.86.163])
	by hub.freebsd.org (Postfix) with ESMTP
	id 39FA737B446; Fri,  6 Apr 2001 11:30:27 -0700 (PDT)
	(envelope-from phk@critter.freebsd.dk)
Received: from critter (localhost [127.0.0.1])
	by critter.freebsd.dk (8.11.3/8.11.3) with ESMTP id f36IUOC42987;
	Fri, 6 Apr 2001 20:30:24 +0200 (CEST)
	(envelope-from phk@critter.freebsd.dk)
To: bmah@FreeBSD.org
Cc: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net>,
	jedgar@FreeBSD.org (Chris D. Faulhaber), cvs-committers@FreeBSD.org,
	cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/contrib/ntp/ntpd ntp_control.c 
In-Reply-To: Your message of "Fri, 06 Apr 2001 11:14:29 PDT."
             <200104061814.f36IETo67718@bmah-freebsd-0.cisco.com> 
Date: Fri, 06 Apr 2001 20:30:24 +0200
Message-ID: <42985.986581824@critter>
From: Poul-Henning Kamp <phk@critter.freebsd.dk>
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

In message <200104061814.f36IETo67718@bmah-freebsd-0.cisco.com>, "Bruce A. Mah"
 writes:
>--==_Exmh_1653959243P
>Content-Type: text/plain; charset=us-ascii
>
>If memory serves me right, "Rodney W. Grimes" wrote:
>> MFC???  phk's broken fixes as immediately mfc'ed, why has this not
>> been?  Especially the other commit to fix the DOS due to logging
>> a bazillion messages when someone hits the snot out of you with
>> bad ntp packets...
>
>Maybe because phk felt more comfortable, under the circumstances, doing
>an immediate MFC without prior approval?  Please remember that RELENG_4
>is still in code-freeze.

A few minutes before I went to commit I received the WindRivers 
announcement, so I figured that Jordan was offline at that time,
I also had discussed the issue with security-officer@ so I felt
that sufficient urgency was indeed at hand to do the iMFC thing.

I'm sorry my patch wasn't perfect, it was intended as a stopgap
only, and I think it fulfilled that role.  As others have pointed
out, the entire file has numerous dubious fragments of code which
should be scrutinized.

As much as I love to tinker with NTP, I seriously hate some bits
of its source code, ntp_control.c is one of the files I hate...

I hate even more for such an exploit to be released in public
with no warning, and even more so when it comes at a time where
I have negative time available on my schedule :-(

--
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message