From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <k.shutemov@velesys.com>
X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on sa.int.altlinux.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.6 required=5.0 tests=AWL,BAYES_00 autolearn=ham
	version=3.2.3
X-Virus-Scanned: amavisd-new at velesys.com
Date: Mon, 3 Mar 2008 12:38:15 +0200
From: "Kirill A. Shutemov" <k.shutemov@velesys.com>,
	"Dmitry V. Levin" <ldv@altlinux.org>
To: ALT Linux Team development discussions <devel@lists.altlinux.org>
Message-ID: <20080303103815.GA5098@localhost.localdomain>
References: <20070913174013.GA6212@localhost.localdomain>
	<20070913231033.GC3619@basalt.office.altlinux.org>
	<20070917091229.GB10677@localhost.localdomain>
	<20070917172128.GB25433@basalt.office.altlinux.org>
	<20070917173545.GA10916@localhost.localdomain>
	<20070918214009.GB19447@basalt.office.altlinux.org>
	<20070919131433.GA373@localhost.localdomain>
	<20070919131950.GD13831@basalt.office.altlinux.org>
	<20070919133003.GA26869@localhost.localdomain>
	<20070919135301.GF13831@basalt.office.altlinux.org>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="wRRV7LY7NUeQGEoC"
Content-Disposition: inline
In-Reply-To: <20070919135301.GF13831@basalt.office.altlinux.org>
X-Operating-System: ALT Linux Sisyphus (20071221) (Kernel 2.6.24-rc8)
User-Agent: Mutt/1.5.17 (2007-11-01)
Subject: Re: [devel] kernel-headers-std
X-BeenThere: devel@lists.altlinux.org
X-Mailman-Version: 2.1.10b3
Precedence: list
Reply-To: ALT Linux Team development discussions <devel@lists.altlinux.org>
List-Id: ALT Linux Team development discussions <devel.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/listinfo/devel>,
	<mailto:devel-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/devel>
List-Post: <mailto:devel@lists.altlinux.org>
List-Help: <mailto:devel-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/devel>,
	<mailto:devel-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Mar 2008 10:35:31 -0000
Archived-At: <http://lore.altlinux.org/devel/20080303103815.GA5098@localhost.localdomain/>
List-Archive: <http://lore.altlinux.org/devel/>
List-Post: <mailto:devel@altlinux.org>


--wRRV7LY7NUeQGEoC
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On [Wed, 19.09.2007 17:53], Dmitry V. Levin wrote:
> On Wed, Sep 19, 2007 at 04:30:03PM +0300, Kirill A. Shutemov wrote:
> > On [Wed, 19.09.2007 17:19], Dmitry V. Levin wrote:
> > > On Wed, Sep 19, 2007 at 04:14:33PM +0300, Kirill A. Shutemov wrote:
> [...]
> > > > nologin.c: Rewrite without glibc at all (#10729)
> > > >=20
> > > > =D0=9D=D0=B5 =D1=81=D0=BE=D0=B2=D1=81=D0=B5=D0=BC =D0=BF=D0=BE=D0=
=BD=D1=8F=D1=82=D0=BD=D0=BE =D0=B7=D0=B0=D1=87=D0=B5=D0=BC =D0=B8 =D0=BA=D0=
=B0=D0=BA =D1=8D=D1=82=D0=BE =D0=BC=D0=BE=D0=B3=D0=BB=D0=BE =D0=BF=D0=BE=D1=
=84=D0=B8=D0=BA=D1=81=D0=B8=D1=82=D1=8C =D0=B1=D0=B0=D0=B3. =D0=9C=D0=BE=D0=
=B6=D0=BD=D0=BE =D0=BB=D0=B8 =D0=B2=D0=B5=D1=80=D0=BD=D1=83=D1=82=D1=8C
> > > > =D0=BE=D0=B1=D1=80=D0=B0=D1=82=D0=BD=D0=BE glibc?
> > >=20
> > > =D0=95=D1=81=D0=BB=D0=B8 =D0=B2=D0=B5=D1=80=D0=BD=D1=83=D1=82=D1=8C =
=D0=BE=D0=B1=D1=80=D0=B0=D1=82=D0=BD=D0=BE glibc, =D1=82=D0=BE =D0=B2=D0=B5=
=D1=80=D0=BD=D1=91=D1=82=D1=81=D1=8F #10729.
> >=20
> > =D0=90 =D1=87=D1=82=D0=BE =D1=8F=D0=B2=D0=BB=D1=8F=D0=B5=D1=82=D1=81=D1=
=8F =D0=BF=D1=80=D0=B8=D1=87=D0=B8=D0=BD=D0=BE=D0=B9 =D1=8D=D1=82=D0=BE=D0=
=B3=D0=BE =D0=B1=D0=B0=D0=B3=D0=B0?
>=20
> =D0=9D=D0=B5=D0=BF=D1=80=D0=B0=D0=B2=D0=B8=D0=BB=D1=8C=D0=BD=D0=B0=D1=8F =
=D1=81=D1=82=D0=B0=D1=82=D0=B8=D1=87=D0=B5=D1=81=D0=BA=D0=B0=D1=8F =D0=BB=
=D0=B8=D0=BD=D0=BA=D0=BE=D0=B2=D0=BA=D0=B0 =D0=B1=D0=B5=D0=B7 libc.

=D0=95=D1=81=D0=BB=D0=B8 =D1=81=D0=BE=D0=B1=D1=80=D0=B0=D1=82=D1=8C =D1=81 =
-nostartfiles =D0=BD=D0=B5 =D1=81=D1=82=D0=B0=D1=82=D0=B8=D0=BA=D0=BE=D0=B9=
, =D1=80=D0=B8=D1=81=D0=BA =D1=81=D0=BE=D1=85=D1=80=D0=B0=D0=BD=D0=B8=D1=82=
=D1=8C=D1=81=D1=8F?=20
=20
> =D0=97=D0=B0=D1=87=D0=B5=D0=BC =D0=BD=D1=83=D0=B6=D0=BD=D0=BE =D0=BB=D0=
=B8=D0=BD=D0=BA=D0=BE=D0=B2=D0=B0=D1=82=D1=8C nologin =D0=B1=D0=B5=D0=B7 li=
bc?  =D0=9F=D1=80=D0=B8=D0=B2=D0=B5=D0=B4=D1=83 =D1=86=D0=B8=D1=82=D0=B0=D1=
=82=D1=83 (=D0=BB=D0=B5=D0=BD=D1=8C =D0=BF=D0=B5=D1=80=D0=B5=D0=B2=D0=BE=D0=
=B4=D0=B8=D1=82=D1=8C):
>=20
> "The dynamic linker and libc startup code checks a number of environment
> variables, which may seriously alter the behavior of the starting
> program - up to execution of arbitrary code (other than that found in
> the program).  Login services such as telnetd/login and sshd allow for
> initial environment variables to be passed from the remote.  This has
> actually been used to break into systems in the past.
>=20
> Now, modern/patched versions of login services use whitelists of
> known-safe environment variables - and allow only for those environment
> variables to be passed from the remote.
>=20
> But we can feel a little bit safer if our disabled accounts' "shells"
> would not be subject to this risk at all - and the only currently
> practical way to achieve that is to avoid the use of the dynamic linker
> and libc."

--=20
Regards,  Kirill A. Shutemov
 + Belarus, Minsk
 + Velesys Ltd, http://www.velesys.com/
 + ALT Linux Team, http://www.altlinux.com/

--wRRV7LY7NUeQGEoC
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (GNU/Linux)

iEYEARECAAYFAkfL1RcACgkQbWYnhzC5v6rZ9ACfSCLMXamViavhEJC3EQ7glVm5
qlgAoIZ+d64vMDTdTrk1XiVxJdpioYEP
=Ddg+
-----END PGP SIGNATURE-----

--wRRV7LY7NUeQGEoC--