Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 16 Jan 2002 08:56:40 -0500 (COT)
From:      Buliwyf McGraw <buliwyf@libertad.univalle.edu.co>
To:        freebsd-security@FreeBSD.ORG
Subject:   Re: gets() is unsafe (fwd)
Message-ID:  <Pine.BSF.4.43.0201160838001.59061-100000@libertad.univalle.edu.co>
next in thread | raw e-mail | index | archive | help 
Kris Kennaway, and lo! it spake thus:
> > * Buliwyf McGraw <buliwyf@libertad.univalle.edu.co> [020114 14:49] wrote:
> > >
> > >  Hi... i was installing several applications (php,xmms,etc) on my
> > >  FreeBSD 4.4 server and i got the next message a lot of times when
> > >  i was compiling:
             ^^^^^^^^^
> > > /usr/lib/compat/libc.so.3: warning: mktemp() possibly used unsafely;
> > > consider using mkstemp()
> > > /usr/lib/compat/libc.so.3: warning: tmpnam() possibly used unsafely;
> > > consider using mkstemp()
[...]

> > No, this is a FAQ; it's a bug in the linker which causes it to trip
> > every single _warn_references() in the library when it links to libc,
> > regardless of whether the program actually uses the functions in
> > question.

> I think it's an even better FAQ: Why, when he's compiling, is it linking
> against a compat/libc?

 Ok... i have to say that i am not an expert on FreeBSD, just a new
 admin... I installed FreeBSD 4.4 on my box (in some  way, "everything by
 default")... and then i started to install some applications (apache,php,etc),
 not with the /stand/sysinstall utility, but in the traditional way:
 - Download the *.tar.gz
 - Uncompress, configure, make, make install

 I expected no problems... but as you can see, the warning messages give
 an "insecure" sensation.
 I want to do something to avoid that messages when i try to compile a GNU
 application.
 Thanks for your comments and help.

=======================================================================
 Buliwyf McGraw
 Administrador del Servidor Libertad
 Centro de Servicios de Informacion
 Universidad del Valle
=======================================================================


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.43.0201160838001.59061-100000>