freebsd-skq/libexec
Christian S.J. Peron d61e5aa4ed In the event a process is tainted (setuid/setgid binaries), un-set any
potentially dangerous environment variables all together. It should be
noted that the run-time linker will not honnor these environment variables
if the process is tainted currently. However, once a child of the tainted
process calls setuid(2), it's status as being tainted (as defined by
issetugid(2)) will be removed. This could be problematic because
subsequent activations of the run-time linker could honnor these
dangerous variables.

This is more of an anti foot-shot mechanism, there is nothing I am
aware of in base that does this, however there may be third party
utilities which do, and there is no real negative impact of clearing
these environment variables.

Discussed on:	secteam
Reviewed by:	cperciva
PR:		kern/109836
MFC after:	2 weeks
2007-05-17 18:00:27 +00:00
..
atrun Don't be sexist - fix a typo. 2005-12-30 17:59:23 +00:00
bootpd Make tv_sec a time_t on all platforms but alpha. Brings us more in line with 2005-12-24 22:22:17 +00:00
comsat Fix most cases where the address of an int is passed to a function expecting a 2005-02-14 17:42:58 +00:00
fingerd Fix most cases where the address of an int is passed to a function expecting a 2005-02-14 17:42:58 +00:00
ftp-proxy Switch to WARNS=2 instead of tinkering directly with CFLAGS (level 2 was 2005-05-18 12:19:50 +00:00
ftpd Remove references to S/Key and list OPIE. 2007-04-20 09:08:20 +00:00
getty Bump document date on behalf of a recent change. 2005-06-14 08:40:10 +00:00
lukemftpd Not needed any more, vendor sources have PAM support. 2006-08-31 17:12:33 +00:00
mail.local Remove kludges intended to support src trees with partial obj trees. 2005-06-10 06:12:53 +00:00
makekey Markup nit. 2004-05-16 22:11:56 +00:00
mknetid Expand *n't contractions. 2005-02-13 22:25:33 +00:00
pppoed Back out all POSIXified *env() changes. 2007-05-01 16:02:44 +00:00
pt_chown Let bsd.prog.mk set SRCS and MAN to their default values. 2005-01-28 16:08:11 +00:00
rbootd Avoid accidental use of ANSI C trigraphs. 2004-08-21 07:23:41 +00:00
revnetgroup Sync program's usage() with manpage's SYNOPSIS. 2005-02-09 20:36:12 +00:00
rlogind Cook CFLAGS by the modern recipe: 2006-07-27 12:05:05 +00:00
rpc.rquotad Fix most cases where the address of an int is passed to a function expecting a 2005-02-14 17:42:58 +00:00
rpc.rstatd Fix most cases where the address of an int is passed to a function expecting a 2005-02-14 17:42:58 +00:00
rpc.rusersd Fix most cases where the address of an int is passed to a function expecting a 2005-02-14 17:42:58 +00:00
rpc.rwalld Fix most cases where the address of an int is passed to a function expecting a 2005-02-14 17:42:58 +00:00
rpc.sprayd Fix most cases where the address of an int is passed to a function expecting a 2005-02-14 17:42:58 +00:00
rshd Spell SHUT_RDWR as SHUT_RDWR not 1+1 as the how argument to shutdown(2). 2005-05-11 02:41:39 +00:00
rtld-aout 64-bit clean + WARNS=6: 2005-01-14 12:22:57 +00:00
rtld-elf In the event a process is tainted (setuid/setgid binaries), un-set any 2007-05-17 18:00:27 +00:00
save-entropy 1. Attempt to take one bullet out of the foot-shooting gun by silently 2006-08-28 06:41:50 +00:00
smrsh Remove kludges intended to support src trees with partial obj trees. 2005-06-10 06:12:53 +00:00
talkd Prevent usage of nested externs. 2005-05-06 15:28:54 +00:00
tcpd Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
telnetd inetd and telnetd are not included in the standard release 2006-07-31 19:15:10 +00:00
tftpd Markup fixes. 2006-09-17 21:48:47 +00:00
ypxfr Expand *n't contractions. 2005-02-13 22:25:33 +00:00
Makefile Reimplementation of world/kernel build options. For details, see: 2006-03-17 18:54:44 +00:00
Makefile.inc