|
Message-ID: <nsp78p38-3648-oss5-9279-4sq279579q7q@vanv.qr> Date: Wed, 15 Mar 2023 10:44:37 +0100 (CET) From: Jan Engelhardt <jengelh@...i.de> To: OSS Security <oss-security@...ts.openwall.com> Subject: Re: TTY pushback vulnerabilities / TIOCSTI On Wednesday 2023-03-15 10:03, Dave Horsfall wrote: >On Wed, 15 Mar 2023, Fabian Keil wrote: > >> In ElectroBSD I removed TIOCSTI support in 2017 [0] and haven't noticed >> any problems. > >I hate tossing out functionality; would you not make it a privileged >operation instead? But also: "Perfection is achieved, not when there is nothing more to add, but when there is nothing left to take away", and it would appear TIOCSTI does not have https://xkcd.com/2347/ -criticality.
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.