diff options
| author | wpaul <wpaul@FreeBSD.org> | 1996-07-13 20:23:13 +0000 |
|---|---|---|
| committer | wpaul <wpaul@FreeBSD.org> | 1996-07-13 20:23:13 +0000 |
| commit | dd36926d570838b0f4086a79308586ddc87eeda9 (patch) | |
| tree | 46b0eb58346dbaacee3ef8cf5ebf9b781d4b0a61 /sys/kern/sys_pipe.c | |
| parent | 4203d74266977ec57c255c755be30a8e73088d4b (diff) | |
| download | FreeBSD-src-dd36926d570838b0f4086a79308586ddc87eeda9.zip FreeBSD-src-dd36926d570838b0f4086a79308586ddc87eeda9.tar.gz | |
In _yp_dobind(), if we find ourselves required to contact the local ypbind
directly in order to obtain binding information, check that the local
ypbind is using a reserved port and return YPERR_YPBIND if it isn't.
We should not trust any ypbind running on a port >= IPPORT_RESERVED;
it may have been started by a malicious user hoping to trick us into
talking to a bogus ypserv.
Note that we do not check the ypserv port returned to us from ypbind.
It is assumed that ypbind has already done a reserved port test (or not,
depending on whether or not it was started with -s); if we trust the
authenticity of the local ypbind, we should also trust its judgement.
Obtained from: OpenBSD
Diffstat (limited to 'sys/kern/sys_pipe.c')
0 files changed, 0 insertions, 0 deletions
