Re: /dev/tcp, and a LD_LIBRARY_PATH question.

Robert M. Haas (rhaas@cygnus.arc.nasa.gov)
Sat, 03 Dec 1994 18:42:21 -0800

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Neil Woods: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
Previous message: Patrick Rabau: "SunOS pathconf on hsfs filesystem crashes machine"
In reply to: anthony baxter: "Re: /dev/tcp, and a LD_LIBRARY_PATH question."
Next in thread: Ken Descoteaux: "Re: /dev/tcp, and a LD_LIBRARY_PATH question."

> A better solution is to smash the _entire_ environment flat, except for
> specific ones, such as TZ, that can be reasonably assumed to be safe (I
> hope - anyone broken into a system with the TZ variable? :-)

I'm not even sure this is sufficient. This only works if LD_LIBRARY_PATH
is not consulted until after you squash the environment. Is this true? 

(If not, you'd have to write a statically linked program to squash the
environment and then exec() the real executable...)

...Robert

Next message: Neil Woods: "Re: [8lgm]-Advisory-14.UNIX.SCO-prwarn.12-Nov-1994"
Previous message: Patrick Rabau: "SunOS pathconf on hsfs filesystem crashes machine"
In reply to: anthony baxter: "Re: /dev/tcp, and a LD_LIBRARY_PATH question."
Next in thread: Ken Descoteaux: "Re: /dev/tcp, and a LD_LIBRARY_PATH question."