Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.rmit.EDU.AU!lynx.aba.net.au!munnari.OZ.AU!news.mel.connect.com.au!news.mira.net.au!news.vbc.net!garlic.com!news.scruz.net!kithrup.com!news.Stanford.EDU!agate!theos.com!deraadt From: deraadt@theos.com (Theo de Raadt) Newsgroups: comp.unix.bsd.freebsd.misc Subject: Re: rdist Date: 01 Sep 1996 15:09:49 GMT Organization: Theo Ports Kernels For Fun And Profit Lines: 26 Message-ID: <DERAADT.96Sep1090949@zeus.theos.com> References: <50av8h$s8l@mozo.cc.purdue.edu> <50c7eo$nkv@dot.cstone.net> NNTP-Posting-Host: zeus.theos.com In-reply-to: pauln@cstone.net's message of Sun, 01 Sep 96 14:57:37 GMT In article <50c7eo$nkv@dot.cstone.net> pauln@cstone.net (Paul Nguyen) writes: In article <50av8h$s8l@mozo.cc.purdue.edu>, ajk@schwinger.physics.purdue.edu (Andrew J. Korty) wrote: >My question is, where can I get source to the old rdist that will >compile under FreeBSD. (I would just try to compile FreeBSD's rdist >for our other machines, but that would get really ugly for some of >them.) > >Thanks ... >ajk Try rdist from ftp://usc.edu/pub/rdist works well and is not setuid. Whoa, I think you are pointing him at the new version, which is the version that is causing his incompatibility problems. Andrew, if you really need the old rdist sources you may be forced to look at the OpenBSD source tree for the old one. It's in usr.bin/oldrdist and uses lib/libc/net/rcmdsh.c. Both new and old rdists are in OpenBSD... and neither are setuid. A number of other security problems have also been solved. If Paul's suggestion is actually based on "replace rdist on all your other machines, they are insecure", that is kind of true as well. -- This space not left unintentionally unblank. deraadt@theos.com