> > About in.telnetd I don't know much, except that it's
> > environment isn't inherited from the telnet client
> > program, which can't write in /etc/tmp...
>
> Well, environment is passed using special protocal. How much of it is
> used depends on in.telned version. Look:
>
[proof of Pavel's (correct) theory]
>
> And what about suid programs?
>
> TMP=/etc ping localhost?
>
> Ok, ping will not use $TMP, but X for sure will?
>
> No, no, this is not secure.
OTOH, do you know of any setuid programs that behave so
badly that they are a security hole?
Rik.
+-----------------------------+------------------------------+
| For Linux mm-patches, go to | "I'm busy managing memory.." |
| my homepage (via LinuxHQ). | H.H.vanRiel@fys.ruu.nl |
| ...submissions welcome... | http://www.fys.ruu.nl/~riel/ |
+-----------------------------+------------------------------+