Date: Thu, 19 Jul 2001 15:58:11 -0700 From: "David O'Brien" <obrien@FreeBSD.ORG> To: Kris Kennaway <kris@obsecurity.org> Cc: Mike Heffner <mheffner@vt.edu>, arch@FreeBSD.ORG Subject: Re: Importing lukemftpd Message-ID: <20010719155811.C90326@dragon.nuxi.com> In-Reply-To: <20010719123119.B44746@xor.obsecurity.org>; from kris@obsecurity.org on Thu, Jul 19, 2001 at 12:31:20PM -0700 References: <XFMail.20010716212454.mheffner@novacoxmail.com> <20010717103604.B79329@xor.obsecurity.org> <20010719112221.A84356@dragon.nuxi.com> <20010719123119.B44746@xor.obsecurity.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Jul 19, 2001 at 12:31:20PM -0700, Kris Kennaway wrote: > On Thu, Jul 19, 2001 at 11:22:21AM -0700, David O'Brien wrote: > > > Index: Makefile > > =================================================================== > > RCS file: /home/ncvs/src/usr.bin/ftp/Makefile,v > > BTW, feel free to commit the ftp client whenever you feel like it, > since there aren't serious security issues at stake there. There aren't?? I am downloading data from a possibly hostile site. They could easily try to buffer overflow the client. Just as much a possible security vulnerability as we saw the the buffer overflows in fetchmail. -- -- David (obrien@FreeBSD.org) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010719155811.C90326>