===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/security.html,v
retrieving revision 1.116
retrieving revision 1.117
diff -c -r1.116 -r1.117
*** www/security.html 1999/10/28 16:58:03 1.116
--- www/security.html 1999/11/09 09:00:36 1.117
***************
*** 188,214 ****
! - Aug 30, 1999:
In cron(8), make sure argv[] is NULL terminated in the
fake popen() and run sendmail as the user, not as root.
(patch included).
!
- Aug 12, 1999: The procfs and fdescfs
filesystems had an overrun in their handling of uio_offset
in their readdir() routines. (These filesystems are not
enabled by default). (patch included).
!
- Aug 9, 1999: Stop profiling (see profil(2))
when we execve() a new process. (patch included).
!
- Aug 6, 1999: Packets that should have
been handled by IPsec may be transmitted as cleartext.
PF_KEY SA expirations may leak kernel resources.
(patch included).
!
- Aug 5, 1999: In /etc/rc, use mktemp(1) for
motd re-writing and change the find(1) to use -execdir
(patch included).
!
- Jul 30, 1999: Do not permit regular
users to chflags(2) or fchflags(2) on character or block devices
which they may currently be the owner of (patch included).
!
- Jul 27, 1999: Cause groff(1) to be invoked
with the -S flag, when called by nroff(1) (patch included).
--- 188,214 ----
! - Aug 30, 1999:
In cron(8), make sure argv[] is NULL terminated in the
fake popen() and run sendmail as the user, not as root.
(patch included).
!
- Aug 12, 1999: The procfs and fdescfs
filesystems had an overrun in their handling of uio_offset
in their readdir() routines. (These filesystems are not
enabled by default). (patch included).
!
- Aug 9, 1999: Stop profiling (see profil(2))
when we execve() a new process. (patch included).
!
- Aug 6, 1999: Packets that should have
been handled by IPsec may be transmitted as cleartext.
PF_KEY SA expirations may leak kernel resources.
(patch included).
!
- Aug 5, 1999: In /etc/rc, use mktemp(1) for
motd re-writing and change the find(1) to use -execdir
(patch included).
!
- Jul 30, 1999: Do not permit regular
users to chflags(2) or fchflags(2) on character or block devices
which they may currently be the owner of (patch included).
!
- Jul 27, 1999: Cause groff(1) to be invoked
with the -S flag, when called by nroff(1) (patch included).
***************
*** 453,459 ****
www@openbsd.org
! $OpenBSD: security.html,v 1.116 1999/10/28 16:58:03 deraadt Exp $