Bugtraq mailing list archives

Re: response to the bugtraq report of buffer overruns in imapd LIST command

From: MRC () CAC WASHINGTON EDU (Mark Crispin)
Date: Mon, 17 Apr 2000 23:07:57 -0700


On Mon, 17 Apr 2000 23:02:48 -0700, R. C. Dowdeswell wrote:

Using chroot in a lot of situations is rather dangerous, and one
must carefully set up the environment that it runs in.


Yes.  This is why I would never do it by default; it's something that the site
has to turn on explictly (and they have to rebuild; it will not be in any
prebuilt binaries).  But thanks for reminding me; I am certainly going to
document that gotcha.  It probably still is valuable for some sites, but it
should never be set for sites that permit shell access.

The ability to break out of chroot while having root privileges is a not an
issue.  The code discards root privileges immediately after the chroot.  It's
also chdir'd to the new root.

Absurdly long mailbox names will not be permitted in the next release, so the
silly problem that triggered all of this foofaraw won't be an issue either.

Current thread:

Re: XFree86 server overflow, (continued)
- - - Re: XFree86 server overflow Olaf Kirch (Apr 17)
    - Re: XFree86 server overflow Valentin Pavlov (Apr 17)
    - Microsoft Security Bulletin (MS00-025) Microsoft Product Security (Apr 17)
    - Re: XFree86 server overflow Paweł Sakowski (Apr 17)
    - RAZOR Analysis of dvwssr.dll Simple Nomad (Apr 17)
    - response to the bugtraq report of buffer overruns in imapd LIST command Mark Crispin (Apr 17)
    - Re: response to the bugtraq report of buffer overruns in imapd LIST command Theo de Raadt (Apr 17)
    - Re: response to the bugtraq report of buffer overruns in imapd LIST command Mark Crispin (Apr 17)
    - Re: response to the bugtraq report of buffer overruns in imapd LIST command R. C. Dowdeswell (Apr 17)
    - xfs security issues (fwd) Chris Evans (Apr 17)
    - Re: response to the bugtraq report of buffer overruns in imapd LIST command Mark Crispin (Apr 17)
    - RUS-CERT Advisory 200004-01: GNU Emacs 20 RUS-CERT, University of Stuttgart (Apr 18)
    - More vulnerabilities in FP Narrow (Apr 18)
    - Re: More vulnerabilities in FP The Cyberiad (Apr 19)
    - Re: More vulnerabilities in FP Ron van Daal (Apr 22)
    - Re: More vulnerabilities in FP The Cyberiad (Apr 19)
    - AVM's Statement eAX [Teelicht] (Apr 19)
    - Adtran DoS Mike Ireton (Apr 19)
    - FreeBSD Security Advisory: FreeBSD-SA-00:13.generic-nqs FreeBSD Security Officer (Apr 19)
    - Re: response to the bugtraq report of buffer overruns in imapd LIST command Warner Losh (Apr 17)
    - pwdump2 for Active Directory Todd Sabin (Apr 18)

(Thread continues...)