Re: Environment Poisoning and login -p
From: Jacques A. Vidrine (nectar_at_FreeBSD.org)
Date: 02/26/04
- Previous message: Bruno Afonso: "Re: traffic normalizer for ipfw?"
- In reply to: Tim Kientzle: "Environment Poisoning and login -p"
- Next in thread: Andrey Chernov: "Re: Environment Poisoning and login -p"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 26 Feb 2004 09:30:04 -0600 To: kientzle@acm.org
On Wed, Feb 25, 2004 at 10:54:31AM -0800, Tim Kientzle wrote:
[...]
> Possible fix: Have login unconditionally discard LD_LIBRARY_PATH
> and LD_PRELOAD from the environment, even if "-p" is specified.
[...]
> Possible fix: Eliminate the "-p" option to login.
I would prefer to redefine `-p' to mean, ``don't discard environmental
variables believed to be safe to propogate''. We can start with this
list:
http://www.opengroup.org/onlinepubs/007904975/basedefs/xbd_chap08.html
plus
EDITOR
KRB5CCNAME
LOGIN
MAILDIR
SSH_AGENT_PID
SSH_AUTH_SOCK
TERMCAP
If that is too draconian for you, then I guess just drop /LD_.*/.
Put the `environment cleaner' in libutil.
Cheers,
-- Jacques Vidrine / nectar@celabo.org / jvidrine@verio.net / nectar@freebsd.org _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Bruno Afonso: "Re: traffic normalizer for ipfw?"
- In reply to: Tim Kientzle: "Environment Poisoning and login -p"
- Next in thread: Andrey Chernov: "Re: Environment Poisoning and login -p"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
