Re: procfs hole

Eivind Eklund (perhaps@YES.NO)
Sun, 10 Aug 1997 15:51:54 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jonathan A. Zdziarski: "Re: procfs hole"
Previous message: Solar Designer: "Getting around non-executable stack (and fix)"
Maybe in reply to: Brian Mitchell: "procfs hole"
Next in thread: Jonathan A. Zdziarski: "Re: procfs hole"

>
> There is a major hole in procfs under FreeBSD 2.2.1 (2.1 is not affected,
> I have not tested 3.x but I believe it to be vulnerable as well) along
> with OpenBSD (not tested by me, but by someone else -- believe it was
> 2.1-RELEASE although obsd doesnt mount procfs by default like freebsd
> does).

Temporary fix: Disable the /proc filesystem. Setting ro instead of rw in
/etc/fstab or chmod'ing on the mountpoint do _not_ work.

Eivind,
looking for a proper fix, but not expecting to get there before David.

Next message: Jonathan A. Zdziarski: "Re: procfs hole"
Previous message: Solar Designer: "Getting around non-executable stack (and fix)"
Maybe in reply to: Brian Mitchell: "procfs hole"
Next in thread: Jonathan A. Zdziarski: "Re: procfs hole"