[illumos-Developer] Webrev for bug 323: Need fix for glob() resource exhaustion
Garrett D'Amore
garrett at nexenta.com
Sun Jun 5 20:27:16 PDT 2011
Yes, its a bug for any application which does globs based on packets passed over the wire. So this needs to be fixed for sftp as well.
The BSD approach involved a change to libc, and modifications to applications to activate the limitations in libc. IMO, this is a better overall approach since it centralizes an implementation that can be verified more easily and then shared across applications.
-- Garrett D'Amore
On Jun 6, 2011, at 4:00 AM, "Dan McDonald" <danmcd at nexenta.com> wrote:
> These changes are okay, modulo what Garrett said.
>
> Isn't this bug also a problem in sftp/scp (which has its own glob)? Perhaps
> less of a problem given there will rarely (ever?) be anonymous ssh service
> save for very specific apps (like hg).
>
> Curious,
> Dan
>
> _______________________________________________
> Developer mailing list
> Developer at lists.illumos.org
> http://lists.illumos.org/m/listinfo/developer
More information about the Developer
mailing list