A security hole
Doug Gwyn
gwyn at brl-smoke.ARPA
Thu Mar 24 06:52:21 AEST 1988
In article <175 at pcsbst.UUCP> jh at pcsbst.UUCP (Johannes Heuft) writes:
>In article <892 at cosmo.UUCP> jum at cosmo.UUCP (Jens-Uwe Mager(sysop))
>reveals the IFS trick.
>Jens-Uwe, lots of system administrators with SVR2 (or less) will hate you
Oh, come on. The IFS trick is quite well-known, ESPECIALLY among
the "hackers" who like to mess up system operation. It is better
for everyone to be aware of the problem than to pretend that by
not talking about it there will be no problem.
>There is no real work-around in SVR2 except ...
>The IFS problem is fixed in SVR3.
It is easy to fix this in the SVR2 shell, too:
/* @(#)main.c 1.7 */
...
/*
* default internal field separators - $IFS
*/
assign(&ifsnod, sptbnl); /* DAG -- was dfault(); now forced */
And don't say "but what if you don't have source"? The originator
of your binary distribution DOES have source; get them to fix it.
More information about the Comp.bugs.sys5
mailing list