Re: Making the keyboard work

To: Thor Lancelot Simon <tls%rek.tjls.com@localhost>
Subject: Re: Making the keyboard work
From: David Holland <dholland-tech%netbsd.org@localhost>
Date: Sun, 22 Feb 2009 10:58:10 +0000

On Sat, Feb 21, 2009 at 10:46:58PM -0500, Thor Lancelot Simon wrote:
 > I don't know what remote systems' sshds are likely to with $TERMCAP;

Historically, $TERMCAP is not propagated because it's unsafe; most
legacy termcap libraries are full of overflows, and also you can use
it to read arbitrary files, which can create various problems with
e.g. restricted accounts.

With telnet, the way $TERM was theoretically supposed to be propagated
required telnetd to be linked against termcap, with the result that
accepting $TERMCAP caused termcap to see it long before login ran and
allowed assorted remote root exploits. Presumably sshd is not so
stupid; however, paranoia tends to linger.

-- 
David A. Holland
dholland%netbsd.org@localhost

References:
- Making the keyboard work
  - From: Roy Marples
- Re: Making the keyboard work
  - From: Alan Barrett
- Re: Making the keyboard work
  - From: Greg A. Woods
- Re: Making the keyboard work
  - From: Thor Lancelot Simon

Prev by Date: Re: Making the keyboard work
Next by Date: Re: junk characters from movement keys in vi in xterm via ssh
Previous by Thread: Re: Making the keyboard work
Next by Thread: Re: Making the keyboard work
Indexes:

Home | Main Index | Thread Index | Old Index