oss-sec mailing list archives

Re: libdbus hardening

From: Florian Weimer <fweimer () redhat com>
Date: Wed, 11 Jul 2012 14:51:30 +0200

On 07/10/2012 04:30 PM, Sebastian Krahmer wrote:

If this is not for upstream and you only need it working on a particular
distro with glibc, then why not use __secure_getenv()?


Indeed, if it is a exported symbol on the glibc versions we ship,
we should consider this. I remember a discussion that it was somehow
not available in the past.

__secure_getenv() is declared and documented in <stdlib.h>, so it's notlikely to go away, especially if we start using it more widely.


--
Florian Weimer / Red Hat Product Security Team

Current thread:

Re: libdbus hardening, (continued)
- Re: libdbus hardening Florian Weimer (Jul 10)
  - Re: libdbus hardening Solar Designer (Jul 10)
    - Re: libdbus hardening Florian Weimer (Jul 10)
    - Re: libdbus hardening Solar Designer (Jul 10)
    - Re: libdbus hardening Sebastian Krahmer (Jul 10)
    - Re: libdbus hardening yersinia (Jul 10)
    - Re: libdbus hardening Sebastian Krahmer (Jul 10)
    - Re: libdbus hardening Solar Designer (Jul 10)
    - Re: libdbus hardening Sebastian Krahmer (Jul 10)
    - Re: libdbus hardening Solar Designer (Jul 10)
    - Re: libdbus hardening Florian Weimer (Jul 11)
    - Re: libdbus hardening Tomas Hoger (Sep 13)
- Re: libdbus hardening Simon McVittie (Jul 10)
  - Re: libdbus hardening Sebastian Krahmer (Jul 11)
    - Re: libdbus hardening Solar Designer (Jul 11)
    - Re: libdbus hardening yersinia (Jul 11)
    - Re: libdbus hardening Solar Designer (Jul 17)
    - Re: libdbus hardening Florian Weimer (Jul 17)
    - Re: libdbus hardening Florian Weimer (Jul 25)
    - Re: libdbus hardening yersinia (Jul 26)
    - Re: libdbus hardening Ludwig Nussel (Jul 30)

(Thread continues...)