diff options
| author | wiz <wiz@pkgsrc.org> | 2000-12-14 11:55:03 +0000 |
|---|---|---|
| committer | wiz <wiz@pkgsrc.org> | 2000-12-14 11:55:03 +0000 |
| commit | a871a49684c3906412b353952df078fda5b50cda (patch) | |
| tree | b091817cdcbb6c21eb594e71a48e7b81521d50cf /security/fsh/Makefile | |
| parent | 7e71ecc7c0188ac9acc2b910db9b4ff44a9da219 (diff) | |
| download | pkgsrc-a871a49684c3906412b353952df078fda5b50cda.tar.gz | |
Update to 1.1 because of a possible security problem:
The socket creation code in fshd was not paranoid enough. There
were are at least two possible attacks:
- If a malicious user has symlinked /tmp/fshd-<UID> to another
file, fshd will chmod 0700 that file.
- A race condition made it possible for an attacker to create an
unsafe socket directory, so that the attacker can access an
fshd tunnel.
The attacker must alread have a local shell on the computer where
fsh or fshd is invoked.
Other changes:
New timeout option, fixed to work with openssh2, now also usable if
you have to enter a password to connect, and some others.
Diffstat (limited to 'security/fsh/Makefile')
| -rw-r--r-- | security/fsh/Makefile | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/security/fsh/Makefile b/security/fsh/Makefile index 26cccc7f1b5..1f023b3691e 100644 --- a/security/fsh/Makefile +++ b/security/fsh/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.1.1.1 2000/01/14 15:37:48 fredb Exp $ +# $NetBSD: Makefile,v 1.2 2000/12/14 11:55:03 wiz Exp $ # -DISTNAME= fsh-1.0 +DISTNAME= fsh-1.1 CATEGORIES= security net MASTER_SITES= ftp://ftp.lysator.liu.se/pub/unix/fsh/ \ http://www.lysator.liu.se/fsh/ |