[5967] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Xserver stack smashed -- wrapper

daemon@ATHENA.MIT.EDU (John Goerzen)
Thu Jan 15 02:56:55 1998

Date: 	Wed, 14 Jan 1998 12:18:59 -0600
Reply-To: John Goerzen <jgoerzen@SOUTHWIND.NET>
From: John Goerzen <jgoerzen@SOUTHWIND.NET>
X-To:         Cotfas Vladimir-Marian <ulianov@MECANICA.MATH.UNIBUC.RO>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To:  Cotfas Vladimir-Marian's message of "Wed, 14 Jan 1998 17:32:02
              +0200"

Cotfas Vladimir-Marian <ulianov@MECANICA.MATH.UNIBUC.RO> writes:

[chop]

>
> Here's a wrapper for this bug and for the older XF86 security vulnerability
> (i.e. XF86_XX -config /etc/shadow)

FYI, Debian GNU/Linux has included such a wrapper for some time now.
However, Debian's wrapper is dynamically customizable (ie, your X
server is specified in a config file, etc).  It will check for these
sorts of problems and prevent them from reaching the X server, similar
to your implementation.

--
John Goerzen
Southwind Internet Access, Inc,
Business e-mail: jgoerzen@southwind.net

Personal e-mail: jgoerzen@complete.org
Wichita State University e-mail: jgoerzen@cs.twsu.edu
Developer, Debian GNU/Linux    <http://www.debian.org>


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[5967] in bugtraq

Re: Xserver stack smashed -- wrapper

daemon@ATHENA.MIT.EDU (John Goerzen)Thu Jan 15 02:56:55 1998

daemon@ATHENA.MIT.EDU (John Goerzen)
Thu Jan 15 02:56:55 1998