From owner-freebsd-security  Sat Jun  2 12: 2:49 2001
Delivered-To: freebsd-security@freebsd.org
Received: from mail.rpi.edu (mail.rpi.edu [128.113.22.40])
	by hub.freebsd.org (Postfix) with ESMTP
	id CBB3A37B423; Sat,  2 Jun 2001 12:02:44 -0700 (PDT)
	(envelope-from drosih@rpi.edu)
Received: from [128.113.24.47] (gilead.acs.rpi.edu [128.113.24.47])
	by mail.rpi.edu (8.11.3/8.11.3) with ESMTP id f52J2dS102080;
	Sat, 2 Jun 2001 15:02:39 -0400
Mime-Version: 1.0
X-Sender: drosih@mail.rpi.edu
Message-Id: <p05100e0db73ee6778f2a@[128.113.24.47]>
In-Reply-To: <p05100e0cb73ebb1a651d@[128.113.24.47]>
References: <000001c0eb56$6d6ae250$241978d8@cts.com>
 <p05100e0cb73ebb1a651d@[128.113.24.47]>
Date: Sat, 2 Jun 2001 15:02:37 -0400
To: "Morgan Davis" <mdavis@cts.com>, <freebsd-stable@FreeBSD.ORG>
From: Garance A Drosihn <drosih@rpi.edu>
Subject: Re: lpd: Malformed from address
Cc: security@FreeBSD.ORG, wollman@FreeBSD.ORG,
	Hajimu UMEMOTO <ume@mahoroba.org>, freebsd-print@bostonradio.org
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

At 12:54 PM -0400 6/2/01,  I (Garance) wrote:
>In a later message on 6/3/01, Hajimu UMEMOTO wrote:
>>When I ported IPv6 support into FreeBSD from NetBSD, I wrongly
>>brought reserved port checking code into FreeBSD.  Originally,
>>FreeBSD's lpd didn't check validity of connection by checking
>>if it comes from reserved port.
>
>Hmm.  I wonder if this is something that got dropped along
>the way somewhere.  The lpd I use at RPI *does* check that
>jobs are coming from a reserved port, and I am pretty sure I
>never wrote that code.  That implies that it must have been
>in whatever version of lpd that RPI started with

A more awake person might have immediately remembered that
the whole reason to keep CVS logs is so people can answer
questions like this...

It appears that freebsd's lpd lost this reserved-port check
with version 1.6 of lpd, back in July of 1997.  The comments
for the change do not indicate why the check was dropped (and
from the comments, it's not clear that the check was MEANT to
be dropped...).  My gut feeling is that the check is good to
do, which gets us back to finding out why the implementation
added with IPv6 does not seem to work for Morgan.

-- 
Garance Alistair Drosehn            =   gad@eclipse.acs.rpi.edu
Senior Systems Programmer           or  gad@freebsd.org
Rensselaer Polytechnic Institute    or  drosih@rpi.edu

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message