Re: CVS commit: src/usr.sbin/rtsold

To: "Perry E. Metzger" <perry%piermont.com@localhost>
Subject: Re: CVS commit: src/usr.sbin/rtsold
From: "Nathan J. Williams" <nathanw%wasabisystems.com@localhost>
Date: 03 Jan 2004 12:39:17 -0500

"Perry E. Metzger" <perry%piermont.com@localhost> writes:

> >    > Also, pidfile handles cleanup automatically.
> >    
> >     atexit() in NetBSD can be very unsafe at this moment - see
> >     http://www.openbsd.org/papers/pacsec03/e/index.html (page 12)
> >     so i don't like it be used.
> 
> Could we fix atexit and then add back the pidfile() functionality?

I think that the judgement that atexit is "very dangerous" is
overblown, having looked at the description of the problem. It's
essentially complaining that there's a function pointer in libc that's
used by all programs, so a vulnerability is introduced once an
attacker has gained the ability to overwrite arbitrary locations in
memory.

This is well beyond even prudent belt-and-suspenders paranoia, I
think.

        - Nathan

Follow-Ups:
- Re: CVS commit: src/usr.sbin/rtsold
  - From: Christoph Badura

References:
- re: CVS commit: src/usr.sbin/rtsold
  - From: matthew green
- Re: CVS commit: src/usr.sbin/rtsold
  - From: Perry E. Metzger

Prev by Date: Re: CVS commit: src/usr.sbin/rtsold
Next by Date: CVS commit: src/sbin/fsck_ffs
Previous by Thread: Re: CVS commit: src/usr.sbin/rtsold
Next by Thread: Re: CVS commit: src/usr.sbin/rtsold
Indexes:

Home | Main Index | Thread Index | Old Index