[4429] in bugtraq
Re: Bug Serious problem in NEC SOCKS server
daemon@ATHENA.MIT.EDU (Matt Bush)
Fri May 9 18:59:01 1997
Date: Fri, 9 May 1997 14:52:15 -0500
Reply-To: Matt Bush <xomox@BORIS.EDEN.COM>
From: Matt Bush <xomox@BORIS.EDEN.COM>
X-To: tschroed@CHEETAH.WSC.EDU
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.ULT.3.95.970509111650.682D-100000@cheetah.wsc.edu> from
"Trevor Schroeder" at May 09, 1997 11:26:19 AM
>
> The following bug is present at *least* in Socks5 beta-0.17.2 from NEC. Other
> versions haven't been tested, but they are most likely vulnerable as well
>
[ ... ]
>
> Workarounds:
>
> * Use mktemp to generate a unique temp file name and redirect socks to that
> * The source is available, recompile *without* PID file support
> * Create /tmp/socks5.pid (as root) and make sure that ordinary users can't
> remove it
>
Or, better yet, write the pidfile in a non-sticky directory, such
as /var/run (on bsd systems).
> Trevor Schroeder tschroed@cheetah.wsc.edu
>
-Matt
