Bugtraq mailing list archives

Re: your mail


From: alan () LXORGUK UKUU ORG UK (Alan Cox)
Date: Sun, 27 Jul 1997 20:38:36 +0100


Version:  all kerneld/request-route versions

Not Linux 2.1.x . We dumped this feature.

telnet to a host, resulting in a request-route kernel
message. The /sbin/request-route would then be executed
and would overwrite the file at the end of the symlink.

Fix:
----

    rm -rf /sbin/request-route

It should be noted the authors of the networking code have
been trying to get request-route dumped for about two years.
You lose no functionality by dumping request-route and you can
do the same things far better with diald, which has no kernel
support. The security reason wasn't the reason we wanted it dumped
but its another very very good one. "man diald" ;)

Alan



Current thread: