From owner-doc-jp@jp.freebsd.org  Wed Sep  6 11:38:13 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id LAA60541;
	Wed, 6 Sep 2000 11:38:13 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from tortoise.jp.freebsd.org (root@tortoise.jp.FreeBSD.ORG [210.157.158.41])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id LAA60533
	for <doc-jp@jp.freebsd.org>; Wed, 6 Sep 2000 11:38:05 +0900 (JST)
	(envelope-from kuriyama@FreeBSD.org)
Received: from waterblue.imgsrc.co.jp (waterblue.imgsrc.co.jp [2001:218:422:2:2d0:b7ff:fea0:d487])
	by tortoise.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP/IPv6 id LAA06406
	for <doc-jp@jp.freebsd.org>; Wed, 6 Sep 2000 11:38:04 +0900 (JST)
	(envelope-from kuriyama@FreeBSD.org)
Received: from waterblue.imgsrc.co.jp (localhost [127.0.0.1])
	by waterblue.imgsrc.co.jp (8.11.0/8.11.0) with ESMTP id e862bxG74909
	for <doc-jp@jp.freebsd.org>; Wed, 6 Sep 2000 11:37:59 +0900 (JST)
Date: Wed, 06 Sep 2000 11:37:59 +0900
Message-ID: <7mu2bu9reg.wl@waterblue.imgsrc.co.jp>
From: Jun Kuriyama <kuriyama@FreeBSD.org>
To: doc-jp@jp.freebsd.org
In-Reply-To: In your message of "3 Sep 2000 00:25:09 GMT"
	<200009030024.JAA27966@mail.geocities.co.jp>
References: <20000828194448.3387437B63D@hub.freebsd.org>
	<200009030024.JAA27966@mail.geocities.co.jp>
User-Agent: Wanderlust/1.1.1 (Purple Rain) SEMI/1.13.7 (Awazu) FLIM/1.13.2 (Kasanui) MULE XEmacs/21.1 (patch 12) (Channel Islands) (i386--freebsd)
MIME-Version: 1.0 (generated by SEMI 1.13.7 - "Awazu")
Content-Type: text/plain; charset=ISO-2022-JP
Reply-To: doc-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: doc-jp 7672
Subject: [doc-jp 7672] Re: ANNOUNCE: FreeBSD Ports Security Advisory: FreeBSD-SA-00:43.brouted
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org
X-Originator: kuriyama@FreeBSD.org

At 3 Sep 2000 00:25:09 GMT,
Hiroki Sato <hrs@geocities.co.jp> wrote:
> brouted $B$N(B port $B$O8m$C$F(B kmem $B%0%k!<%W$G(B setgid $B$5$l$?>uBV$G(B
> $B%$%s%9%H!<%k$5$l$^$9(B.  $B$^$?(B, brouted $B$K$O%3%^%s%I%i%$%s0z?t$K(B
> $B$$$/$D$+0-MQ2DG=$J%P%C%U%!%*!<%P%U%m!<LdBj$,4^$^$l$F$$$^$9(B.
> $B$=$N$?$a(B, $B$=$l$i$r0-MQ$7$F(B kmem $B%f!<%6$N8"8B$rF@$?967b<T$O(B,
> $B%+!<%M%k%a%b%j$rA`:n$9$k$3$H$GMF0W$K40A4$J(B root $B8"8B$N%"%/%;%9$r(B
> $B<j$KF~$l$k$3$H$,$G$-$^$9(B.

$B!!8e$m$NJ}$O!V(Bkmem $B%0%k!<%W$N8"8B!W$+$J!#(B

> IV.  $B=$@5=hCV(B - Workaround
> 
> Execute the following command as root to remove the setgid bit on the
> /usr/local/sbin/brouted file:
> 
> # chmod g-s /usr/local/bin/brouted
> 
> $B<!$N%3%^%s%I$r(B root $B8"8B$G<B9T$7(B, /usr/loca/sbin/brouted $B$+$i(B
> setuid $B%S%C%H$r<h$j=|$$$F$/$@$5$$(B.

$B!!(Bs/setuid/setgid/


-- 
Jun Kuriyama <kuriyama@FreeBSD.org> // FreeBSD Project
