[5139] in bugtraq
Re: procfs hole
daemon@ATHENA.MIT.EDU (Alex)
Mon Aug 11 02:29:46 1997
Date: Sun, 10 Aug 1997 22:30:42 -0700
Reply-To: Alex <garbanzo@HOOKED.NET>
From: Alex <garbanzo@HOOKED.NET>
X-To: Eivind Eklund <perhaps@YES.NO>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <199708101351.PAA04930@bitbox.follo.net>
On Sun, 10 Aug 1997, Eivind Eklund wrote:
> >
> > There is a major hole in procfs under FreeBSD 2.2.1 (2.1 is not affected,
> > I have not tested 3.x but I believe it to be vulnerable as well) along
> > with OpenBSD (not tested by me, but by someone else -- believe it was
> > 2.1-RELEASE although obsd doesnt mount procfs by default like freebsd
> > does).
>
> Temporary fix: Disable the /proc filesystem. Setting ro instead of rw in
> /etc/fstab or chmod'ing on the mountpoint do _not_ work.
>
> Eivind,
> looking for a proper fix, but not expecting to get there before David.
There was a patch released on FreeBSD-Hackers about 3 or so hours ago,
that claims to fix the problem.
- alex
