Date: Thu, 31 Aug 1995 06:17:43 +1000 From: Bruce Evans <bde@zeta.org.au> To: kuku@gilberto.physik.rwth-aachen.de, terry@Artisoft.com Cc: freebsd-hackers@freefall.FreeBSD.org Subject: Re: *READ THIS* snapshot fixes security hole *READ THIS* (fwd) Message-ID: <199508302017.GAA20319@godzilla.zeta.org.au>
next in thread | raw e-mail | index | archive | help
>> > Here are the files in /bin and /sbin which call syslog() >> > >> > BIN >> > ./date/date.c >> > >> > SBIN >> > ./shutdown/shutdown.c >> > ./savecore/savecore.c >> > ... >This is silly (and the list is incomplete -- you see the CERT advisory >target program listed there at all? 8-)). I think they're worrying about the statically linked binaries that wouldn't be fixed by installing new shared libraries. Bruce
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199508302017.GAA20319>