the importance of using safe interprocess communication

Ben Escoto bescoto@stanford.edu
Fri, 08 Feb 2002 00:18:56 -0800

Previous message: the importance of using safe interprocess communication
Next message: the importance of using safe interprocess communication
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

--==_Exmh_2048581172P
Content-Type: text/plain; charset=us-ascii

>>>>> "JH" == Jamie Heilman <jamie@audible.transient.net>
>>>>> wrote the following on Thu, 7 Feb 2002 23:52:47 -0800

  JH> Yeah I saw that upon further evaluation, however I assure you
  JH> escaping shell code is not the answer to this problem and will
  JH> only lead to more security holes.  Using the correct kind of
  JH> system call is.  I'm still working on a patch of some type,
  JH> though your's should get me through the night's backups.
 
Hmm, how is the patched version vulnerable to security holes?


--
Ben Escoto

--==_Exmh_2048581172P
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Exmh version 2.5 01/15/2001

iD8DBQE8Y4ns+owuOvknOnURAhs4AJ41pjgXqAmdQU8oU2CpnEn0gcUNzACdGD8x
K/Eu5wCmGmGQaf8OUye4KuU=
=ie3e
-----END PGP SIGNATURE-----

--==_Exmh_2048581172P--

Previous message: the importance of using safe interprocess communication
Next message: the importance of using safe interprocess communication
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]