SecFix for databases/firebird, please review
Chris Knight
chris at e-easy.com.au
Mon Aug 18 05:09:36 PDT 2003
Howdy,
> -----Original Message-----
> From: owner-freebsd-audit at freebsd.org On Behalf Of Alexander Leidinger
> Sent: Monday, 18 August 2003 21:20
> To: Chris Knight
> Cc: ports at freebsd.org; audit at freebsd.org
> Subject: Re: SecFix for databases/firebird, please review
>
>
> On Mon, 18 Aug 2003 11:57:08 +1000
> "Chris Knight" <chris at e-easy.com.au> wrote:
>
> > > [snip]
> > That's what I'm currently in the process of doing - passing in the
> > size of the buffer to gds__prefix. It gets called with buffer
> > lengths of 64, 100, 128, 256 and 1024.
>
> Ugh... seems I've missed some calls...
>
Yeah, it's not an easy fix, unfortunately :-(
> > I'm probably going to have to use strncat to keep it a bit more
> > portable.
>
> That's the reason why I haven't used strlcat...
>
Cool.
> > I don't particularly like it, but I'm inclined to agree with
> > you - the port probably should go. I can always maintain the 1.0.x
> > port outside of the FreeBSD Ports Tree and make it available on my
> > Website with lots of warning labels. I'll get onto the Firebird
> > 1.5 port pronto, which
>
> We can add the warning labels also to the in tree port...
>
Possibly, but if Jacques or Kris insist on it going, then I'm not
going to waste my time and theirs arguing about it.
> > should end this issue and put me out of my current misery.
>
> And you're sure 1.5 is better in this regard?
>
Yes, just.
> Bye,
> Alexander.
>
Regards,
Chris Knight
Systems Administrator
E-Easy
Tel: +61 3 6334 6664 Fax: +61 3 6331 7032 Mob: +61 419 528 795
Web: http://www.e-easy.com.au
More information about the freebsd-audit
mailing list