Date: Mon, 15 Jul 1996 04:31:31 -0400 (EDT) From: jaeger <jaeger@dhp.com> To: -Vince- <vince@mercury.gaianet.net> Cc: Poul-Henning Kamp <phk@freebsd.org>, jbhunt <jbhunt@mercury.gaianet.net>, freebsd-security@freebsd.org Subject: Re: New EXPLOIT located! Message-ID: <Pine.LNX.3.91.960715042633.5268A-100000@dhp.com> In-Reply-To: <Pine.BSF.3.91.960715004202.1637C-100000@mercury.gaianet.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 15 Jul 1996, -Vince- wrote: > > While we're at the subject, is there a hole with mount_msdos also > because the guy had some text on mount_msdos but I deleted the > /sbin/mount_msdos and -current still installs with the setuid bit... > > Vince > mount_msdos is subject to the same vfsload(3) problems as mount_union. The exploit is slightly different. The FreeBSD advisory gave details on how to disable the suid bit in -current makefiles. -jaeger
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.3.91.960715042633.5268A-100000>