Hello!
Andrew Brown wrote:
> >>There is a sparc version avail for this bug, the bug was discovered by
> >>duke some time ago.
> just for people who don't know...or have forgotten...putting this:
> set noexec_user_stack = 1
> set noexec_user_stack_log = 1
Just look at http://secinf.net/info/unix/stack.txt for an explanation how to
remake the exploit code, to avoid these settings. This text where sent to
the Bagtraq sometime ago.
> in your /etc/system file protects you against this. it doesn't fix
> the bug, but it stops the effects from being quite so "bad".
Yes, this method is very good, alas it could not be a panacea :(((
--
------------------------------------------------------
Eugene S. Ilchenko, System Network Administrator
http://secinf.net/
