IPv6 readyNote: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

[Users] Re: [Bugs] Serious Privacy bug in freeswan-1.98b barf

From: Michael Richardson (mcr_at_sandelman.ottawa.on.ca)
Date: Tue Jul 16 2002 - 03:11:03 CEST

-----BEGIN PGP SIGNED MESSAGE-----

>>>>> "Hugh" == Hugh Daniel <hugh_at_road.toad.com> writes:
    Hugh> I just did a barf on a system that had ipsec stopped, and
    Hugh> interestingly enough it dumped the contents of all of my home
    Hugh> direcotry's file names into the barf.

    Hugh> ... egrep: pf_key_*: No such file or directory +
    Hugh> _________________________ proc/sys/net/ipsec-star + cd
    Hugh> /proc/sys/net/ipsec /usr/local/lib/ipsec/barf: cd:
    Hugh> /proc/sys/net/ipsec: No such file or directory + egrep '^'
    Hugh> 04-Fifth-Foo ... Binary file 04-Fifth-Foo matches
    Hugh> 0x5FC039903AD90.txt: This file is private... ...

  Try the following please, now in the snapshot.
  (Please make sure that you run PGP over it to remove the leading - from the
patch)

Index: barf
===================================================================
RCS file: /freeswan/MASTER/freeswan/programs/barf/barf.in,v
retrieving revision 1.69
diff -u -r1.69 barf.in
- --- barf.in 8 Jun 2002 20:50:20 -0000 1.69
+++ /usr/local/lib/ipsec/barf 16 Jul 2002 01:07:48 -0000
@@ -145,9 +145,9 @@
 _________________________ proc/net/pf_key
 cat /proc/net/pf_key
 _________________________ proc/net/pf_key-star
- -( cd /proc/net ; egrep '^' pf_key_* )
+( cd /proc/net && egrep '^' pf_key_* )
 _________________________ proc/sys/net/ipsec-star
- -( cd /proc/sys/net/ipsec ; egrep '^' * )
+( cd /proc/sys/net/ipsec && egrep '^' * )
 _________________________ ipsec/status
 ipsec auto --status
 _________________________ ifconfig-a
@@ -183,7 +183,7 @@
 _________________________ proc/sys/net/ipv4/ip_forward
 cat /proc/sys/net/ipv4/ip_forward
 _________________________ proc/sys/net/ipv4/conf/star-rp_filter
- -( cd /proc/sys/net/ipv4/conf ; egrep '^' */rp_filter )
+( cd /proc/sys/net/ipv4/conf && egrep '^' */rp_filter )
 _________________________ uname-a
 uname -a
 _________________________ redhat-release

] ON HUMILITY: to err is human. To moo, bovine. | firewalls [
] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[
] mcr_at_sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy"); [

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: latin1
Comment: Finger me for keys

iQCVAwUBPTNynYqHRg3pndX9AQH6mQP9E8+clpSsPFTgUE+6qwxfjMj+YRiD2Eou
Ov6vJgBXydInojMuOpRy9Kwmx4waY/oNELdhhD11qUZ+SNTAGusrs6XCoSJ49Kqn
tsosRF0did4AtrT04hrSrP3YRGwN+gMbiqTXmBtWwxHxIYONF39mzAB0W1pvt2UX
lgqLQLD1xV4=
=xLWv
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:20:23 CEST