Date: Wed, 29 May 2002 16:54:32 -0700 From: Kris Kennaway <kris@obsecurity.org> To: cjclark@alum.mit.edu Cc: "Jacques A. Vidrine" <nectar@freebsd.org>, security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:27.rc Message-ID: <20020529165432.A8595@xor.obsecurity.org> In-Reply-To: <20020529154113.D12700@blossom.cjclark.org>; from crist.clark@attbi.com on Wed, May 29, 2002 at 03:41:13PM -0700 References: <200205291636.g4TGaZX40801@freefall.freebsd.org> <20020529133852.B12700@blossom.cjclark.org> <20020529210334.GA5544@madman.nectar.cc> <20020529154113.D12700@blossom.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--/9DWx/yDrRhgMJTb Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, May 29, 2002 at 03:41:13PM -0700, Crist J. Clark wrote: > On Wed, May 29, 2002 at 04:03:34PM -0500, Jacques A. Vidrine wrote: > > On Wed, May 29, 2002 at 01:38:52PM -0700, Crist J. Clark wrote: > > > > /bin/sh -c 'echo -e "/.X11-unix/s/^/#/\nw\nq\n" | /bin/ed -s /et= c/rc' > > >=20 > > > Ick. How about, > > >=20 > > > # /usr/bin/printf "/.X11-unix/s/^/#/\nw\nq\n" | /bin/ed -s /etc/rc > > >=20 > > > Next time? > >=20 > > *shrug* One could prescribe any number of alternatives to achieve the > > modification. I chose this way, because /bin/sh and /bin/ed are both > > statically linked and should always be available on all systems in > > single user mode. It seems unlikely that this will be an issue for > > anyone, but hey - you never know. >=20 > I guess I should have explained my concern more. I'm thinking some > l33t kid out there is going to look at that and say, "I can just do, >=20 > # echo -e "/.X11-unix/s/^/#/\nw\nq\n" | /bin/ed -s /etc/rc >=20 > And not have to worry about all of that /bin/sh stuff at the front..." > and thus outsmart himself. If people are too stupid^Welite to follow directions they deserve what they get. Kris --/9DWx/yDrRhgMJTb Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD) iD8DBQE89Wo4Wry0BWjoQKURApFdAJ9PPtbAQRJmW06N1YpicfWjVW6nIwCgtAwQ oL4cqEDVJIFmmJcBM2atjl4= =bg0n -----END PGP SIGNATURE----- --/9DWx/yDrRhgMJTb-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020529165432.A8595>