[474] in linux-security and linux-alert archive
Re: telnetd hole
daemon@ATHENA.MIT.EDU (David Hedley)
Wed Nov 8 23:34:33 1995
To: linux-security@tarsier.cv.nrao.edu
In-reply-to: Your message of Mon, 06 Nov 95 15:24:39 -0500. <199511062024.PAA09935@tarsier.cv.nrao.edu>
Date: Tue, 07 Nov 95 12:09:39 +0000
From: David Hedley <hedley@cs.bris.ac.uk>
-----BEGIN PGP SIGNED MESSAGE-----
It seems to me that the crux of the problem lies with what the
LD_LIBRARY_PATH (and others) are supposed to do.
IMHO LD_LIBRARY_PATH should be used only to specify _additional_ libraries,
over and above those given in /etc/ld.so.conf. In this way it wouldn't
matter what it was set to as libraries in /lib, /usr/lib etc will always be
searched first. After all, the only times you wants to _replace_ the
standard library is when you are either cracking the system, or developing
a new library.
Thoughts?
David
- --
David Hedley (David.Hedley@bris.ac.uk)
http://www.cs.bris.ac.uk/~hedley/
finger hedley@cs.bris.ac.uk for PGP key
Computer Graphics Group | University of Bristol | UK
*** All opinions expressed are mine and mine alone ***
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2i
Comment: Processed by Mailcrypt 3.3, an Emacs/PGP interface
iQCVAwUBMJ9MRli5qrCO/mUBAQFi/AQAlETQ4cVZ439+RTTjLc/HAgbhDdE2ge+N
rqg/4L9mcaM+kzyxIXIrWs4Gc90y4jwm3oyk1j9Y0bd5otvq2ST/azHxDNUVrVrR
PkbefZe19oJhdanwEckflZkGt8JEF7o8knrdu6Q0iOzeoXH6zpUMKty/kEM1sD/w
B/sl/I2triU=
=j22g
-----END PGP SIGNATURE-----
