Re: RFC: Removing file(1)+libmagic(3) from the base system

From: Colin Percival <cperciva@xxxxxxxxxxx>
Date: Thu, 24 May 2007 00:02:06 -0700

Kris Kennaway wrote:

What is the threat you are defending against here: "Admin runs file(1)
on untrusted binary"?

Yes, or "user runs script(s) which run file(1) on untrusted binaries".

If so, how does it differ from e.g. running cat(1) on an untrusted
binary, which can reprogram your terminal emulation and in some cases
take over your terminal; or from various other unprivileged user
binaries that also crash when operating on corrupted data, possibly in
an exploitable way? Last time I checked lots of our /usr/bin tools
coredumped when you passed them unexpected input.

What do you mean by "unexpected input"? Do you mean unexpected data on
stdin to tools like b64decode, comm, cut, diff, and fold, which might
reasonably be run on untrusted data, or do you mean wacky command lines
to utilities like awk or c99 (where control over said command line would
innately give an attacker the ability to run code of his choosing)?

Also, did coverity find the buffer overflow

No. The overflow resulted from failing to correctly keep track of how
much space was left in a buffer, so it wasn't something which Coverity
(or any other similar tool) really had any chance to find.

Colin Percival
_______________________________________________
freebsd-arch@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-arch
To unsubscribe, send any mail to "freebsd-arch-unsubscribe@xxxxxxxxxxx"

Follow-Ups:
- Re: RFC: Removing file(1)+libmagic(3) from the base system
  - From: Kris Kennaway

References:
- RFC: Removing file(1)+libmagic(3) from the base system
  - From: Colin Percival
- Re: RFC: Removing file(1)+libmagic(3) from the base system
  - From: Kris Kennaway

Prev by Date: Re: RFC: Removing file(1)+libmagic(3) from the base system
Next by Date: Re: RFC: Removing file(1)+libmagic(3) from the base system
Previous by thread: Re: RFC: Removing file(1)+libmagic(3) from the base system
Next by thread: Re: RFC: Removing file(1)+libmagic(3) from the base system
Index(es):
- Date
- Thread

Relevant Pages

Re: Damn you, FEDEX! or Nikon D40 lost in Springfield, MO blackhole.
... the 2 mp Mavica he had been using with a Nikon D40. ... After shopping around, he got me to order one for him. ... The shipper had it insured, but from what I have read it could take weeks to sort this crap out. ... You may get your insurance from FedEx and a couple weeks later they find it and deliver it. ...
(alt.photography)
Re: is Online Physics Course or Degree advisable?
... Smart Model or Ken Seto or others keep on ... > not understanding proper physics enough to debunk it. ... about how good the U is, and you can do math by correspondence. ... years math is worth 6 years total and you need it anyway. ...
(sci.physics)
Re: python 3 constant
... is require Python to change to accommodate your need. ... Can you see the slight difference? ... Best regards, ...
(comp.lang.python)
Re: The Sci-Fi Rejection Letter That Time Forgot
... nations have stockpiled arsenals of these incredible bombs and the time the story is set. ...
(rec.arts.sf.written)
Re: Wachstumssaison Flieder
... Handbreit über dem Boden. ... "Fliederkrimi" am Samstag halten heute meine Nerven nicht aus. ... Dorothee ...
(de.rec.garten)