From owner-doc-jp@jp.freebsd.org  Fri Jul 14 22:17:46 2000
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id WAA05017;
	Fri, 14 Jul 2000 22:17:46 +0900 (JST)
	(envelope-from owner-doc-jp@jp.FreeBSD.org)
Received: from smtp02.246.ne.jp (smtp02.246.ne.jp [210.253.192.36])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with SMTP id WAA05010
	for <doc-jp@jp.freebsd.org>; Fri, 14 Jul 2000 22:17:40 +0900 (JST)
	(envelope-from y-koga@jp.FreeBSD.org)
Received: (qmail 24969 invoked by alias); 14 Jul 2000 22:17:39 +0900
Message-ID: <20000714131739.24968.qmail@smtp.246.ne.jp>
Received: (qmail 24945 invoked from network); 14 Jul 2000 22:17:31 +0900
Received: from tp4hr083.246.ne.jp (HELO localhost) (210.253.193.83)
  by smtp.246.ne.jp with SMTP; 14 Jul 2000 22:17:31 +0900
To: doc-jp@jp.freebsd.org
X-Mailer: Mew version 1.94.2 on Emacs 19.28 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Multipart/Mixed;
 boundary="--Next_Part(Fri_Jul_14_22:16:44_2000_722)--"
Content-Transfer-Encoding: 7bit
Date: Fri, 14 Jul 2000 22:17:30 +0900
From: Koga Youichirou <y-koga@jp.freebsd.org>
X-Dispatcher: imput version 20000228(IM140)
Reply-To: doc-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: doc-jp 7562
Subject: [doc-jp 7562] FreeBSD-SA-00-23,24,26,27,28,30,31,32,33
Errors-To: owner-doc-jp@jp.freebsd.org
Sender: owner-doc-jp@jp.freebsd.org
X-Originator: y-koga@jp.freebsd.org

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit

$B$A$g$C$HBg$-$$$G$9$,!"8=>u$N$b$N$rA4It$D$1$^$9!#(B

$B$^$:$^$:FI$a$kJ8>O$K$J$C$?5$$,$7$^$9$N$G!"F|MK$ND+$K$G$b(B announce-jp 
$B$KN.$7$^$9!#(B
----
$B$3$,$h$&$$$A$m$&(B

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-23

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Ports Security Advisory: FreeBSD-SA-00:23.ip-options [REVISED]
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Tue, 11 Jul 2000 14:58:00 -0700 (PDT)
  Message-Id: <20000711215800.233B237B944@hub.freebsd.org>
  X-Sequence: announce-jp 474

 $B$rF|K\8lLu$7$?$b$N$G$9(B. ($BLuCm(B: FreeBSD Ports Security Advisory $B$G$O$J(B
 $B$/!"(BFreeBSD Security Advisory $B$,K\Mh@5$7$$$b$N$G$9(B)

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
-----BEGIN PGP SIGNED MESSAGE-----

=============================================================================
FreeBSD-SA-00:23                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	Remote denial-of-service in IP stack [REVISED]

$BJ,N`(B:		core
$B%b%8%e!<%k(B:	kernel
$B9pCNF|(B:		2000-06-19
$B2~D{F|(B:		2000-07-11
$B1F6AHO0O(B:	$B=$@5F|$h$jA0$N(B FreeBSD $B%7%9%F%`(B
$B%/%l%8%C%H(B:	NetBSD Security Advisory 2000-002 $B$*$h$S(B
		Jun-ichiro itojun Hagino <itojun@kame.net>
$B=$@5F|(B:		($B$$$/$D$+$N%P%0$,=$@5$5$l$F$$$k$,(B, $B:G6a$N=$@5F|$O0J2<(B
		$B$N$H$*$j(B)
		2000-06-08 (3.4-STABLE)
		2000-06-08 (4.0-STABLE)
		2000-06-02 (5.0-CURRENT)
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

II.  $BLdBj$N>\:Y(B - Problem Description

FreeBSD $B$N(B IP $B%9%?%C%/$K$*$1$k(B IP $B%*%W%7%g%s$N=hM}$K$O$$$/$D$+$N%P%0$,(B
$BB8:_$7$^$9(B. $B$=$N%P%0$H$O(B, $B6-3&%A%'%C%/$N0z?t$,@5$7$/$J$$$3$H$H(B, $B%3!<%G(B
$B%#%s%0>e$N8m$j$N$?$a$K(B, $BFCDj$NIT@5$J(B IP $B%Q%1%C%H$r<u$1<h$k$H(B, $B%G!<%?$N(B
$BGK2u$d%+!<%M%k%Q%K%C%/$r0z$-5/$3$94m81$,$"$j$^$9(B. 

$B$3$l$i0lO"$N%P%0$K$O(B NetBSD Security Advisory 2000-002
(ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-002.txt.asc 
$B;2>H(B) $B$K5-=R$5$l$F$$$k<eE@(B, $B$*$h$S$=$l$H;w$?1F6A$r5Z$\$9JL$N%P%0$,4^$^(B
$B$l$F$$$^$9(B.

III. $B1F6AHO0O(B - Impact

$B%j%b!<%H$N%f!<%6$,(B FreeBSD $B%7%9%F%`$r%Q%K%C%/$5$;$?$j%j%V!<%H$5$;$?$j(B
$B$9$k$3$H$,2DG=$G$9(B. 

IV.  $BBP1~:v(B - Workaround

ipfw(8) $B$r;HMQ$9$k$3$H$G(B, $B6-3&%U%!%$%"%&%)!<%k$d%m!<%+%k%[%9%H>e$G(B, IP 
$B%*%W%7%g%s$r4^$`N.F~%Q%1%C%H$r%V%m%C%/$9$k$3$H$,2DG=$G$9(B (ipf(8) $B$G$b(B 
IP $B%*%W%7%g%s$r4^$`%Q%1%C%H$r%V%m%C%/$9$k$3$H$,2DG=$G$9$,(B, $B$3$3$G$O=R(B
$B$Y$^$;$s(B). 

$B0J2<$N(B ipfw $B$N%k!<%k$G(B, $B%5!<%S%9ITG=967b$rKI$0$3$H$,$G$-$^$9(B ($B$9$G$K(B 
ipfw $B$r;HMQ$7$F$$$k>l9g(B, '100'-'103' $B$N%k!<%kHV9f$O(B, $B%m!<%+%k$N%U%!%$(B
$B%"%&%)!<%k$GE,Ev$J?t;z$KCV$-49$($F$/$@$5$$(B). 

ipfw add 100 deny log ip from any to any ipopt rr
ipfw add 101 deny log ip from any to any ipopt ts
ipfw add 102 deny log ip from any to any ipopt ssrr
ipfw add 103 deny log ip from any to any ipopt lsrr

$BDL>o;HMQ$5$l$k$3$H$O$J$$$G$7$g$&$7(B, $B%V%m%C%/$9$k$3$H$GFC$KLdBj$H$J$k$3(B
$B$H$O$J$$$H;W$$$^$9$,(B, IP $B%*%W%7%g%s$r@5Ev$K;HMQ$9$k$H$$$&$3$H$,$"$jF@(B
$B$k$3$H$KCm0U$,I,MW$G$9(B. $B$7$?$,$C$F(B, $B>e5-$N(B ipfw $B%k!<%k$G@8@.$5$l$k%m%0(B
$B%(%s%H%j$O(B, $BI,$:$7$b967b$,;n$_$i$l$?$H$$$&$3$H$r>ZL@$9$k$o$1$G$O$"$j$^(B
$B$;$s(B. $B$^$?(B, $B%Q%1%C%H$O56B$2DG=$J$b$N$G$"$j(B, $B;OE@%"%I%l%9$r56$C$F$$$k$3(B
$B$H$b9M$($i$l$^$9(B. 

V.   $B=$@5=hCV(B - Solution

$B0J2<$N$$$:$l$+$r9T$J$C$F$/$@$5$$(B. 

1) FreeBSD $B%7%9%F%`$r=$@5F|0J9_$N(B 3.4-STABLE, 4.0-STABLE, 5.0-CURRENT 
$B$K%"%C%W%0%l!<%I$9$k(B. 

2) $B0J2<$N%Q%C%A$rE,MQ$7(B, $B%+!<%M%k$r:F%3%s%Q%$%k$9$k(B. 

$BK\4+9p$r%U%!%$%k$KJ]B8$9$k$+(B, $B0J2<$N(B URL $B$+$i%Q%C%A$*$h$S(B PGP $B=pL>$r%@(B
$B%&%s%m!<%I$7(B, PGP $B%f!<%F%#%j%F%#$r;HMQ$7$F(B PGP $B=pL>$H>H9g$7$^$9(B. 

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:23/ip_options.diff
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:23/ip_options.diff.asc

# cd /usr/src/sys/netinet
# patch -p < /path/to/patch_or_advisory

[ http://www.freebsd.org/handbook/kernelconfig.html $B$K$7$?$,$C$F%+!<%M(B
$B%k$r:F%3%s%Q%$%k$7(B, $B?7$7$$%+!<%M%k$G%j%V!<%H$7$^$9(B. ]

VI.   $B2~D{MzNr(B - Revision History

v1.0  2000-06-19  $B=iHG8x3+(B
v1.1  2000-07-11  ipfw $B$r;HMQ$7$?BP1~:v$rDI2C(B

    Index: ip_icmp.c
    ===================================================================
    RCS file: /ncvs/src/sys/netinet/ip_icmp.c,v
    retrieving revision 1.39
    diff -u -r1.39 ip_icmp.c
    --- ip_icmp.c	2000/01/28 06:13:09	1.39
    +++ ip_icmp.c	2000/06/08 15:26:39
    @@ -662,8 +662,11 @@
     			    if (opt == IPOPT_NOP)
     				    len = 1;
     			    else {
    +				    if (cnt < IPOPT_OLEN + sizeof(*cp))
    +					    break;
     				    len = cp[IPOPT_OLEN];
    -				    if (len <= 0 || len > cnt)
    +				    if (len < IPOPT_OLEN + sizeof(*cp) ||
    +				        len > cnt)
     					    break;
     			    }
     			    /*
    Index: ip_input.c
    ===================================================================
    RCS file: /ncvs/src/sys/netinet/ip_input.c,v
    retrieving revision 1.130
    diff -u -r1.130 ip_input.c
    --- ip_input.c	2000/02/23 20:11:57	1.130
    +++ ip_input.c	2000/06/08 15:25:46
    @@ -1067,8 +1067,12 @@
     		if (opt == IPOPT_NOP)
     			optlen = 1;
     		else {
    +			if (cnt < IPOPT_OLEN + sizeof(*cp)) {
    +				code = &cp[IPOPT_OLEN] - (u_char *)ip;
    +				goto bad;
    +			}
     			optlen = cp[IPOPT_OLEN];
    -			if (optlen <= 0 || optlen > cnt) {
    +			if (optlen < IPOPT_OLEN + sizeof(*cp) || optlen > cnt) {
     				code = &cp[IPOPT_OLEN] - (u_char *)ip;
     				goto bad;
     			}
    @@ -1174,6 +1178,10 @@
     			break;
     
     		case IPOPT_RR:
    +			if (optlen < IPOPT_OFFSET + sizeof(*cp)) {
    +				code = &cp[IPOPT_OFFSET] - (u_char *)ip;
    +				goto bad;
    +			}
     			if ((off = cp[IPOPT_OFFSET]) < IPOPT_MINOFF) {
     				code = &cp[IPOPT_OFFSET] - (u_char *)ip;
     				goto bad;
    Index: ip_output.c
    ===================================================================
    RCS file: /ncvs/src/sys/netinet/ip_output.c,v
    retrieving revision 1.99
    diff -u -r1.99 ip_output.c
    --- ip_output.c	2000/03/09 14:57:15	1.99
    +++ ip_output.c	2000/06/08 15:27:08
    @@ -1302,8 +1302,10 @@
     		if (opt == IPOPT_NOP)
     			optlen = 1;
     		else {
    +			if (cnt < IPOPT_OLEN + sizeof(*cp))
    +				goto bad;
     			optlen = cp[IPOPT_OLEN];
    -			if (optlen <= IPOPT_OLEN || optlen > cnt)
    +			if (optlen < IPOPT_OLEN + sizeof(*cp) || optlen > cnt)
     				goto bad;
     		}
     		switch (opt) {


END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-24

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Security Advisory: FreeBSD-SA-00:24.libedit
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Wed,  5 Jul 2000 16:02:39 -0700 (PDT)
  Message-Id: <20000705230239.8E2CF37B8B6@hub.freebsd.org>
  X-Sequence: announce-jp 465

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
-----BEGIN PGP SIGNED MESSAGE-----

=============================================================================
FreeBSD-SA-00:24                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	libedit reads config file from current directory

$BJ,N`(B:		core
$B%b%8%e!<%k(B:	libedit
$B9pCNF|(B:		2000-07-05
$B1F6AHO0O(B:	$B=$@5F|$h$jA0$N$9$Y$F$N%P!<%8%g%s$N(B FreeBSD
$B%/%l%8%C%H(B:	Tim Vanderhoek <hoek@FreeBSD.org>
$B%Y%s%@$N%9%F!<%?%9(B:	$BG'<1:Q(B
$B=$@5F|(B:		2000-05-22
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

libedit $B$O(B, $BBPOCE*$J%3%^%s%I;X8~%W%m%0%i%`MQ$K(B, $BF~NO9T$NJT=8$d%R%9%H%j(B
$B5!G=$rDs6!$9$k%i%$%V%i%j$G$9(B. 

II.  $BLdBj$N>\:Y(B - Problem Description

libedit $B$O(B, $B%+%l%s%H%G%#%l%/%H%j$K(B .editrc $B%U%!%$%k$,B8:_$9$k>l9g(B, 
$B8m$C$F$=$l$rFI$_9~$_(B, $B%W%m%0%i%`$NF0:n$r@_Dj$7$F$7$^$$$^$9(B. $B$^$?(B, $B$=$N(B
$B:](B .editrc $B%U%!%$%k$N=jM-<T$r3NG'$7$^$;$s(B. $B$=$N$?$a(B, $BB>$N%f!<%6$,$"$k(B
$B%G%#%l%/%H%j$G(B libedit $B$H%j%s%/$5$l$?%P%$%J%j$r<B9T$9$k(B ($B$?$H$($P(B root 
$B$,(B /tmp $B$+$i(B ftp(1) $B$r<B9T$9$k(B) $B>l9g(B, $B$=$N<B9T;~$N%G%#%l%/%H%j$K$"$i$+(B
$B$8$a(B .editrc $B%U%!%$%k$r:n@.$7$F$*$/$3$H$G(B, $B967b<T$OB>$N%f!<%6$N%-!<%P(B
$B%$%s%I$rG$0U$K:F@_Dj$7$?$j(B, $BC<Kv$N%1!<%Q%S%j%F%#$rJQ99$9$k$3$H$,2DG=$G(B
$B$9(B. $B$3$l$OB>$N%f!<%6$,(B, $B%7%9%F%`$N%;%-%e%j%F%#$r?/$9$h$&$J%W%m%0%i%`$r(B
$B$=$l$H5$$E$+$:$K<B9T$7$F$7$^$&>u67$rM6H/$5$;$kL\E*$GMxMQ$5$l$k2DG=@-$,(B
$B$"$j$^$9(B. $B$?$H$($P(B, ftp(1) $B$K$O%7%'%k$r8F$S=P$7$F%3%^%s%I$r<B9T$9$k5!(B
$BG=$,$"$j$^$9$,(B, $B$3$l$O(B libedit $B$K$h$C$F<B8=$5$l$F$$$^$9(B.

$B$3$3$GDs6!$9$k%Q%C%A$O(B, $BLdBj$H$J$k=hM}$r:o=|$7(B, .editrc $B%U%!%$%k$,B8:_(B
$B$7(B, $B$+$D<B9T%U%!%$%k$,8"8B$r>e>:$5$;$k$3$H$,$J$$>l9g(B ($B$9$J$o$A(B setuid 
$B$d(B setgid $B$5$l$F$$$J$$>l9g(B), libedit $B$,%f!<%6$N%[!<%`%G%#%l%/%H%jG[2<$N(B
$B@_Dj%U%!%$%k$@$1$r;2>H$9$k$h$&$K$7$^$9(B. 

FreeBSD 3.5-RELEASE $B$K$O$3$NLdBj$O$"$j$^$;$s(B. $B$7$+$7(B, 4.0-RELEASE $B$O(B
$B%j%j!<%98e$K$3$NLdBj$,H/8+$5$l$?$?$a(B, $B$3$NLdBj$K$h$k1F6A$,$"$j$^$9(B. 

III. $B1F6AHO0O(B - Impact

$B%f!<%6$,%W%m%0%i%`$r<B9T$9$k%G%#%l%/%H%j$,!"967b<T$K$h$C$F=q$-9~$_2DG=(B
$B$G$"$k>l9g(B, $B967b<T$OG$0U$N%3%^%s%I(B ($BLuCm(B: $B%W%m%0%i%`$,Ds6!$9$kBPOCE*$J(B
$B%3%^%s%I(B) $B$r<B9T$5$;$k$3$H$,$G$-$^$9(B. (root $B$N$h$&$J(B) $BFC8"%f!<%6$G$=$N(B
$B%W%m%0%i%`$r<B9T$9$k$H(B, $B%7%9%F%`$,4m81$K$J$k2DG=@-$,$"$j$^$9(B. 

IV.  $BBP1~:v(B - Workaround

$BB>$N%f!<%6$,=q$-9~$_2DG=$J%G%#%l%/%H%j$G(B, libedit $B$r%j%s%/$7$F$$$k%f!<(B
$B%F%#%j%F%#$rBPOCE*$K<B9T$7$J$$$h$&$K$9$k(B. 

libedit $B$rF0E*$K%j%s%/$7$F$$$k%f!<%F%#%j%F%#$r3NG'$9$k$?$a$K(B, libfind 
$B$H$$$&%D!<%k$H$=$N(B PGP $B=pL>$r%@%&%s%m!<%I$7(B, PGP $B%f!<%F%#%j%F%#$r;HMQ(B
$B$7$F(B, PGP $B=pL>$H>H9g$7$^$9(B. 

# fetch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/tools/SA-00:24/libfind.sh
# fetch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/tools/SA-00:24/libfind.sh.asc

root $B8"8B$G(B libfind.sh $B%D!<%k$r<B9T$7$^$9(B. 

# sh libfind.sh libedit /

$B@EE*$K(B libedit $B$,%j%s%/$5$l$?%f!<%F%#%j%F%#$K$D$$$F$O(B, $B$=$N$h$&$J%P%$(B
$B%J%j$r8+$D$1$k$?$a$NJ8;zNs$,Kd$a9~$^$l$F$$$J$$$N$G8+$D$1$k$3$H$,$G$-$J(B
$B$$$3$H$KCm0U$,I,MW$G$9(B. $B$7$+$70J2<$N%j%9%H$O(B, $B@EE*$^$?$OF0E*$K(B libedit 
$B$,%j%s%/$5$l$F$$$k(B FreeBSD $B%7%9%F%`$N%f!<%F%#%j%F%#$N40A4$J%j%9%H$G$"(B
$B$k$H;W$$$^$9(B. 

/bin/sh
/sbin/fsdb
/usr/bin/ftp
/usr/sbin/cdcontrol
/usr/sbin/lpc
/usr/sbin/nslookup
/usr/sbin/pppctl

libedit $B$ODL>o$N;HMQ$K$*$$$F%]!<%?%V%k$J%i%$%V%i%j$G$O$"$j$^$;$s$N$G(B, 
$B$3$l$r@EE*$K%j%s%/$7$F$$$k$h$&$J(B FreeBSD ports $B$O$"$^$j$J$$$H;W$o$l$^(B
$B$9(B ($B8=;~E@$G$O(B, $B$=$N$h$&$J(B ports $B$O3NG'$5$l$F$$$^$;$s(B). 

V.   $B=$@5=hCV(B - Solution

$B0J2<$N$$$:$l$+$r9T$J$C$F$/$@$5$$(B. 

$B<eE@$N$"$k%7%9%F%`$r(B, $B=$@5F|0J9_$N%P!<%8%g%s$K%"%C%W%0%l!<%I$9$k(B. 

2) $BK\4+9p$r%U%!%$%k$KJ]B8$9$k$+(B, $B0J2<$N(B URL $B$+$i%Q%C%A$H$=$N(BPGP $B=pL>$r(B
$B%@%&%s%m!<%I$7(B, PGP $B%f!<%F%#%j%F%#$r;HMQ$7$F(B PGP $B=pL>$H>H9g$7$^$9(B. 

# fetch ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-00:24/libedit.patch
# fetch ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-00:24/libedit.patch.asc

$B%Q%C%A$rE,MQ$7(B, $B0J2<$N$h$&$K$7$F:F9=C[$7$^$9(B. 

# cd /usr/src/lib/libedit
# patch -p < /path/to/patch/or/advisory

$B0J2<$N%Z!<%8$K$7$?$,$C$F%7%9%F%`$r:F9=C[$7$^$9(B. 

http://www.freebsd.org/handbook/makeworld.html

    --- el.c	1999/08/20 01:17:12	1.6
    +++ el.c	2000/05/22 05:55:22	1.7
    @@ -290,13 +294,10 @@
         char *ptr, path[MAXPATHLEN];
     
         if (fname == NULL) {
    -	fname = &elpath[1];
    -	if ((fp = fopen(fname, "r")) == NULL) {
    -	    if (issetugid() != 0 || (ptr = getenv("HOME")) == NULL)
    -		return -1;
    -	    (void)snprintf(path, sizeof(path), "%s%s", ptr, elpath);
    -	    fname = path;
    -	}
    +	if (issetugid() != 0 || (ptr = getenv("HOME")) == NULL)
    +	    return -1;
    +	(void) snprintf(path, sizeof(path), "%s%s", ptr, elpath);
    +	fname = path;
         }
     
         if ((fp = fopen(fname, "r")) == NULL)
    
END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-26

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Ports Security Advisory: FreeBSD-SA-00:26.popper [REVISED]
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Tue, 11 Jul 2000 14:55:37 -0700 (PDT)
  Message-Id: <20000711215537.5C73937B7DA@hub.freebsd.org>
  X-Sequence: announce-jp 475

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
=============================================================================
FreeBSD-SA-00:26                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	popper port contains remote vulnerability [REVISED]

$BJ,N`(B:		ports
$B%b%8%e!<%k(B:	popper
$B9pCNF|(B:		2000-07-05
$B2~D{F|(B:		2000-07-11
$B%/%l%8%C%H(B:	Prizm <prizm@RESENTMENT.ORG>
$B1F6AHO0O(B:	Ports Collection
$B=$@5F|(B:		2000-05-25
$B%Y%s%@$N%9%F!<%?%9(B:	$BG'<1:Q(B
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

qpopper $B$O?M5$$N$"$k(B POP3 $B%a!<%k%5!<%P$G$9(B. 

II.  $BLdBj$N>\:Y(B - Problem Description

$B%P!<%8%g%s(B 2.53 $B$*$h$S$=$l0JA0$N(B qpopper $B$N(B port $B$O(B, $B%a!<%k$N%a%C%;!<(B
$B%8%X%C%@$K4^$^$l$k=q<0J8;zNs$r8m$C$F=hM}$7$F$7$^$$$^$9(B. $B%j%b!<%H$N967b(B
$B<T$,0-0U$r;}$C$F:n@.$7$?%a!<%k%a%C%;!<%8$r%m!<%+%k$N%f!<%6$KAw$k$H(B,
POP $B%/%i%$%"%s%H$,(B UIDL $B%3%^%s%I$r;HMQ$7$F%a%C%;!<%8$r<hF@$9$k:]$K(B, $B%5(B
$B!<%P>e$GG$0U$N%3!<%I$r<B9T$5$;$i$l$F$7$^$&2DG=@-$,$"$j$^$9(B. $B$=$N%3!<%I(B
$B$O(B, $B%a!<%k$r<hF@$7$h$&$H$7$F$$$k%f!<%68"8B$G<B9T$5$l$^$9(B. $B$7$?$,$C$F(B, 
$B$b$7(B root $B$,(B POP3 $B7PM3$G%a!<%k$rFI$`>l9g(B, root $B8"8B$,C%$o$l$k$3$H$K$J(B
$B$j$^$9(B. $B$3$N<eE@$O(B, qpopper-3.0.2 $B$K$OB8:_$7$^$;$s(B. qpopper-3.0.2 $B$O(B 
FreeBSD $B$N(B Ports Collection $B$GDs6!$5$l$F$$$^$9(B. 

qpopper $B$N(B port $B$O%G%U%)%k%H$G%$%s%9%H!<%k$5$l$k$b$N$G$O$J$/(B, FreeBSD 
$B%7%9%F%`$N0lIt$r9=@.$9$k$b$N$G$b$"$j$^$;$s(B. $B$=$l$i$O(B, 3500 $B$rD6$($k%5(B
$B!<%I%Q!<%F%#@=$N%"%W%j%1!<%7%g%s$,$9$0$K%$%s%9%H!<%k$G$-$k7A$G<}$a$i$l(B
$B$F$$$k(B FreeBSD Ports Collection $B$N0lIt$G$9(B. FreeBSD 4.0 $B$H$H$b$K=P2Y$5(B
$B$l$?(B Ports Collection $B$O(B, $B%j%j!<%98e$KLdBj$,8+$D$+$C$?$?$a$K$3$NLdBj$r(B
$B4^$s$G$$$^$9$,(B, FreeBSD 3.5 $B$G$O=$@5$5$l$F$$$^$9(B. 

FreeBSD $B$G$O(B, $B$3$N$h$&$J%5!<%I%Q!<%F%#@=%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#(B
$BLdBj$KBP$7$F(B, $BFC$K2?$+$r<gD%$9$k$3$H$O$"$j$^$;$s(B ($BLuCm(B: Ports
Collection $B$KF~$C$F$$$k$+$i$H$$$C$F(B, FreeBSD $B$N3+H/<T$?$A$,$=$N%"%W%j(B
$B%1!<%7%g%s$,0BA4$G$"$k$HI>2A$7$?$o$1$G$O$"$j$^$;$s(B). $B$?$@$7(B, $B%;%-%e%j(B
$B%F%#LdBj$KBP$7$FBg$-$J1F6A$r;}$D$h$&$J(B ports $B$KBP$9$k%;%-%e%j%F%#4F::(B
$B$rDs6!$9$Y$/(B, $B8=:_EXNOCf$G$9(B. 

III. $B1F6AHO0O(B - Impact

$B%j%b!<%H$N%f!<%6$O(B, POP $B%/%i%$%"%s%H$,%a!<%k$r<hF@$9$k$H$-$K(B, $B$=$N%a!<(B
$B%k$r<hF@$9$k%f!<%6$N8"8B$GG$0U$N%3!<%I$r<B9T$5$;$k$3$H$,2DG=$G$9(B. 

qpopper-2.53 $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$J$1$l$P(B, $B$=$N%7%9%F(B
$B%`$K$3$NLdBj$K$D$$$F$N%;%-%e%j%F%#>e$N<eE@$O$"$j$^$;$s(B.

IV.  $BBP1~:v(B - Workaround

popper $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$k>l9g(B, $B$=$l$r%"%s%$%s%9%H(B
$B!<%k$9$k(B.

V.   $B=$@5=hCV(B - Solution

$B0J2<$N$$$:$l$+$r9T$J$C$F$/$@$5$$(B. 

1) Ports Collection $BA4BN$r99?7$7$F(B, qpopper $B$N(B port $B$r:F%3%s%Q%$%k$9$k(B.
$B$^$?$O(B, /usr/ports/mail/popper3 $B$GDs6!$5$l$F$$$k(B qpopper-3.0.2 $B$K%"%C(B
$B%W%0%l!<%I$9$k(B. 

2) $B8E$$(B package $B$r%"%s%$%s%9%H!<%k$7(B, $B=$@5F|0J9_$N?7$7$$(B package $B$r%$(B
$B%s%9%H!<%k$9$k(B. $B?7$7$$%Q%C%1!<%8$O(B, $B0J2<$N>l=j$+$iF~<j2DG=$G$9(B. 

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/mail/qpopper-2.53.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/mail/qpopper-2.53.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/mail/qpopper-2.53.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/mail/qpopper-2.53.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/mail/qpopper-2.53.tgz

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/mail/qpopper3-3.0.2.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/mail/qpopper3-3.0.2.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/mail/qpopper3-3.0.2.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/mail/qpopper3-3.0.2.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/mail/qpopper3-3.0.2.tgz

3) $B0J2<$N>l=j$+$i(B qpopper $B$N?7$7$$(B port $B%9%1%k%H%s$r%@%&%s%m!<%I$7(B, 
$B$=$l$r;HMQ$7$F(B qpopper $B$N(B port $B$r:F%3%s%Q%$%k$9$k(B.

http://www.freebsd.org/ports/

4) portcheckout $B%f!<%F%#%j%F%#$r;HMQ$9$k$H(B, $B>e5-(B (3) $B$r<+F0E*$K(B
$B9T$J$&$3$H$,$G$-$^$9(B.  portcheckout $B$O(B, /usr/ports/devel/portcheckout 
$B$d(B, $B0J2<$N>l=j$+$iF~<j2DG=$G$9(B. 

ftp://ftp.freebsd.org/pub/FreeBSD/ports/packages/devel/portcheckout-1.0.tgz

VI.   $B2~D{MzNr(B - Revision History

v1.0  2000-07-05  $B=iHG8x3+(B
v1.1  2000-07-11  qpopper-2.53 package $B$N(B URL $B$r=$@5(B, qpopper3-3.0.2 
                  $B$NDs6!$K$D$$$F$N5-=R$rDI2C(B, Ports Collection $B$N5,LO(B
                  $B$r99?7(B

END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-27

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Ports Security Advisory: FreeBSD-SA-00:27.XFree86-4
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Wed,  5 Jul 2000 16:07:21 -0700 (PDT)
  Message-Id: <20000705230721.2E6CB37BCFB@hub.freebsd.org>
  X-Sequence: announce-jp 467

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
=============================================================================
FreeBSD-SA-00:27                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	XFree86-4.0 port contains local root overflow

$BJ,N`(B:		ports
$B%b%8%e!<%k(B:	Xfree86-4
$B9pCNF|(B:		2000-07-05
$B%/%l%8%C%H(B:	Michal Zalewski <lcamtuf@TPI.PL>
$B1F6AHO0O(B:	Ports Collection
$B=$@5F|(B:		2000-06-09
$B%Y%s%@$N%9%F!<%?%9(B:	$B%Q%C%A8x3+:Q(B
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

XFree86 4.0 $B$O(B, $B?M5$$N$"$k(B XFree86 X Window $B%7%9%F%`$N3+H/%P!<%8%g%s$G(B
$B$9(B. 

II.  $BLdBj$N>\:Y(B - Problem Description

XFree86 4.0 $B$N%5!<%P$K$O(B, $B%3%^%s%I%i%$%s0z?t$N6-3&%A%'%C%/$,ITE,@Z$G$"(B
$B$k$?$a(B, $B%m!<%+%k$N(B root $B8"8B$,C%$o$l$k<eE@$,$"$j$^$9(B. 

$B0JA0$N%P!<%8%g%s$G$O(B, $B0z?t$N%A%'%C%/$J$I$r9T$J$&(B setuid $B$5$l$?>.$5$J(B 
wrapper $B%W%m%0%i%`$,MQ0U$5$l$F$$$^$7$?$,(B, XFree86 4.0 $B$G$O%5!<%P$N<B9T(B
$B%U%!%$%k$O(B, root $B$G(B setuid $B$5$l$F$$$^$9(B. 

XFree86-4 $B$N(B port $B$O%G%U%)%k%H$G%$%s%9%H!<%k$5$l$k$b$N$G$O$J$/(B,
FreeBSD $B%7%9%F%`$N0lIt$r9=@.$9$k$b$N$G$b$"$j$^$;$s(B. $B$=$l$i$O(B, 3400 $B$r(B
$BD6$($k%5!<%I%Q!<%F%#@=$N%"%W%j%1!<%7%g%s$,$9$0$K%$%s%9%H!<%k$G$-$k7A$G(B
$B<}$a$i$l$F$$$k(B FreeBSD Ports Collection $B$N0lIt$G$9(B. FreeBSD 4.0 $B$H$H$b(B
$B$K=P2Y$5$l$?(B Ports Collection $B$O(B, $B%j%j!<%98e$KLdBj$,8+$D$+$C$?$?$a$K$3(B
$B$NLdBj$r4^$s$G$$$^$9$,(B, FreeBSD 3.5 $B$G$O=$@5$5$l$F$$$^$9(B. 

FreeBSD $B$G$O(B, $B$3$N$h$&$J%5!<%I%Q!<%F%#@=%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#(B
$BLdBj$KBP$7$F(B, $BFC$K2?$+$r<gD%$9$k$3$H$O$"$j$^$;$s(B ($BLuCm(B: Ports
Collection $B$KF~$C$F$$$k$+$i$H$$$C$F(B, FreeBSD $B$N3+H/<T$?$A$,$=$N%"%W%j(B
$B%1!<%7%g%s$,0BA4$G$"$k$HI>2A$7$?$o$1$G$O$"$j$^$;$s(B). $B$?$@$7(B, $B%;%-%e%j(B
$B%F%#LdBj$KBP$7$FBg$-$J1F6A$r;}$D$h$&$J(B ports $B$KBP$9$k%;%-%e%j%F%#4F::(B
$B$rDs6!$9$Y$/(B, $B8=:_EXNOCf$G$9(B. 

III. $B1F6AHO0O(B - Impact

$BFC8"$r;}$?$J$$%m!<%+%k$N%f!<%6$,(B, root $B8"8B$rF@$k$3$H$,$G$-$^$9(B. 

XFree86-4 $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$J$1$l$P(B, $B$=$N%7%9%F%`$K(B
$B$3$NLdBj$K$D$$$F$N%;%-%e%j%F%#>e$N<eE@$O$"$j$^$;$s(B.

IV.  $BBP1~:v(B - Workaround

XFree86-4 $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$k>l9g(B, $B$=$l$r%"%s%$%s%9(B
$B%H!<%k$9$k(B. $B$"$k$$$O(B, /usr/X11R6/bin/XFree86 $B%P%$%J%j%U%!%$%k$N<B9T8"(B
$B$r@)8B$7$F(B, $B?.Mj$G$-$k%0%k!<%W$N%a%s%P$N$_<B9T$G$-$k$h$&$K$9$k(B. 

V.   $B=$@5=hCV(B - Solution

$B8=;~E@$G$O(B, $B%5!<%P$N%P%$%J%j$K$D$$$F%;%-%e%j%F%#$K4X$9$kG[N8$,7g$1$F$$(B
$B$k$?$a(B, XFree86 4.0 $B$r?.Mj$G$-$J$$%f!<%6$N$$$k%^%k%A%f!<%6%7%9%F%`>e$G(B
$B;HMQ$9$k$3$H$r?d>)$7$^$;$s(B. $B8=:_$N0BDj%P!<%8%g%s$G$"$k(B XFree86 3.3.6 
$B$b(B FreeBSD $B$N(B Ports Collection $B$H$7$FDs6!$5$l$F$$$^$9(B. 

$B0J2<$N$$$:$l$+$r9T$J$C$F$/$@$5$$(B. 

1) Ports Collection $BA4BN$r99?7$7$F(B, XFree86-4 $B$N(B port $B$r:F%3%s%Q%$%k$9$k(B.

2) $B8E$$(B package $B$r%"%s%$%s%9%H!<%k$7(B, $B=$@5F|0J9_$N?7$7$$(B package $B$r%$(B
$B%s%9%H!<%k$9$k(B. $B?7$7$$%Q%C%1!<%8$O(B, $B0J2<$N>l=j$+$iF~<j2DG=$G$9(B. 

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/x11/XFree86-4.0.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/x11/XFree86-4.0.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/x11/XFree86-4.0.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/x11/XFree86-4.0.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/x11/XFree86-4.0.tar.gz

$B99?7$5$l$?%P!<%8%g%s$G$"$k(B XFree86 4.0.1 $B$,8x3+$5$l$F$$$^$9(B. $B$3$N%P!<(B
$B%8%g%s$G$O(B, $BK\4+9p$G=R$Y$F$$$kLdBj$K$D$$$F=$@5$5$l$F$$$k$h$&$G$9(B. $B$7$+(B
$B$7(B, X $B%5!<%P$O0MA3(B root $B$G(B setuid $B$5$l$F%$%s%9%H!<%k$5$l$^$9$N$G(B, $B%^%k(B
$B%A%f!<%6$N%^%7%s$K%$%s%9%H!<%k$9$k>l9g$K$O>e=R$NDL$jCm0U$,I,MW$G$9(B. 
$B$=$N(B packages $B$O(B, $B6aF|Cf$K0J2<$N(B URL $B$KMQ0U$5$l$k$G$7$g$&(B. 

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/x11/XFree86-4.0.1.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/x11/XFree86-4.0.1.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/x11/XFree86-4.0.1.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/x11/XFree86-4.0.1.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/x11/XFree86-4.0.1.tar.gz

3) $B0J2<$N>l=j$+$i(B XFree86-4 $B$N?7$7$$(B port $B%9%1%k%H%s$r%@%&%s%m!<%I$7(B,
$B$=$l$r;HMQ$7$F(B XFree86-4 $B$N(B port $B$r:F%3%s%Q%$%k$9$k(B.

http://www.freebsd.org/ports/

4) portcheckout $B%f!<%F%#%j%F%#$r;HMQ$9$k$H(B, $B>e5-(B (3) $B$r<+F0E*$K(B
$B9T$J$&$3$H$,$G$-$^$9(B.  portcheckout $B$O(B, /usr/ports/devel/portcheckout 
$B$d(B, $B0J2<$N>l=j$+$iF~<j2DG=$G$9(B. 

ftp://ftp.freebsd.org/pub/FreeBSD/ports/packages/devel/portcheckout-1.0.tgz
END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-28

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Ports Security Advisory: FreeBSD-SA-00:28.majordomo
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Wed,  5 Jul 2000 16:08:22 -0700 (PDT)
  Message-Id: <20000705230822.B2E6837BAD9@hub.freebsd.org>
  X-Sequence: announce-jp 468

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
=============================================================================
FreeBSD-SA-00:28                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	majordomo is not safe to run on multi-user machines

$BJ,N`(B:		ports
$B%b%8%e!<%k(B:	majordomo
$B9pCNF|(B:		2000-07-05
$B1F6AHO0O(B:	Ports Collection
$B=$@5F|(B:		$BK\J8;2>H$N$3$H(B
$B%Y%s%@$N%9%F!<%?%9(B:	$BLdBj$K$D$$$FJ8=q2=$7$F$$$k(B
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

majordomo $B$O(B, $B?M5$$N$"$k%a!<%j%s%0%j%9%H4IM}%7%9%F%`$G$9(B. 

II.  $BLdBj$N>\:Y(B - Problem Description

majordomo $B$K$OJ#?t$N(B Perl $B%9%/%j%W%H$,4^$^$l$F$$$^$9(B. $B$=$N%9%/%j%W%H72(B
$B$O(B, $B%a!<%j%s%0%j%9%H$N4IM}5!G=$rDs6!$9$k$?$a$K(B, setuid $B$5$l$?(B wrapper 
$B%W%m%0%i%`$+$i<B9T$5$l$^$9(B. $B$7$+$7(B, $B$3$l$i$N%9%/%j%W%H$K$O(B, $BHsFC8"%f!<(B
$B%6$,(B majordomo $B$N%f!<%68"8B$GG$0U$N%3%^%s%I$r<B9T$G$-$F$7$^$&B?$/$N<e(B
$BE@$,$"$j$^$9(B. $B$3$l$O%a!<%j%s%0%j%9%H$N%G!<%?$rFI$_=q$-$G$-$F$7$^$&$H$$(B
$B$&$3$H$G$9(B. 

majordomo $B$N(B port $B$O%G%U%)%k%H$G%$%s%9%H!<%k$5$l$k$b$N$G$O$J$/(B,
FreeBSD $B%7%9%F%`$N0lIt$r9=@.$9$k$b$N$G$b$"$j$^$;$s(B. $B$=$l$i$O(B, 3400 $B$r(B
$BD6$($k%5!<%I%Q!<%F%#@=$N%"%W%j%1!<%7%g%s$,$9$0$K%$%s%9%H!<%k$G$-$k7A$G(B
$B<}$a$i$l$F$$$k(B FreeBSD Ports Collection $B$N0lIt$G$9(B. 

FreeBSD $B$G$O(B, $B$3$N$h$&$J%5!<%I%Q!<%F%#@=%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#(B
$BLdBj$KBP$7$F(B, $BFC$K2?$+$r<gD%$9$k$3$H$O$"$j$^$;$s(B ($BLuCm(B: Ports
Collection $B$KF~$C$F$$$k$+$i$H$$$C$F(B, FreeBSD $B$N3+H/<T$?$A$,$=$N%"%W%j(B
$B%1!<%7%g%s$,0BA4$G$"$k$HI>2A$7$?$o$1$G$O$"$j$^$;$s(B). $B$?$@$7(B, $B%;%-%e%j(B
$B%F%#LdBj$KBP$7$FBg$-$J1F6A$r;}$D$h$&$J(B ports $B$KBP$9$k%;%-%e%j%F%#4F::(B
$B$rDs6!$9$Y$/(B, $B8=:_EXNOCf$G$9(B. 

III. $B1F6AHO0O(B - Impact

$B%m!<%+%k$NHsFC8"%f!<%6$,(B majordomo $B$N%f!<%68"8B$G%3%^%s%I$r<B9T2DG=$G(B
$B$9(B. $B$3$l$O(B, $B%a!<%j%s%0%j%9%H$NEPO?%G!<%?$r;2>H!&JQ99$G$-$k$3$H$b4^$_$^(B
$B$9(B. 

majordomo $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$J$1$l$P(B, $B$=$N%7%9%F%`$K(B
$B$3$NLdBj$K$D$$$F$N%;%-%e%j%F%#>e$N<eE@$O$"$j$^$;$s(B.

IV.  $BBP1~:v(B - Workaround

majordomo $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$k>l9g(B, $B$=$l$r%"%s%$%s%9(B
$B%H!<%k$9$k(B. $B$"$k$$$O(B, majordomo/ $B%G%#%l%/%H%j$H(B, $B$=$NG[2<$N%U%!%$%k72(B
$B$rE,@Z$J%Q!<%_%7%g%s$K@)8B$9$k(B. 

V.   $B=$@5=hCV(B - Solution

$B3+H/85$O(B, majordomo $B$r%$%s%9%H!<%k$7$?:]$N%G%U%)%k%H$N@_Dj$K4^$^$l$k$5(B
$B$^$6$^$J%;%-%e%j%F%#%[!<%k$r=$@5$7$J$$$3$H$r7hDj$7$F$$$k$N$G(B, $B4JC1$J2r(B
$B7hJ}K!$OB8:_$7$^$;$s(B. /usr/local/majordomo $B%G%#%l%/%H%j$*$h$S$=$NG[2<(B
$B$N%U%!%$%k72$N%Q!<%_%7%g%s$r87$7$/$9$k$3$H$G(B, $BI,MW$J5!G=$r0];}$7$?$^$^(B
$B==J,0BA4$K(B majordomo $B$r%$%s%9%H!<%k$9$k$3$H$O2DG=$@$H;W$$$^$9(B. $B$7$+$7(B, 
FreeBSD $B$N(B majordomo $B$N(B port $B$G$O$=$&$$$&$3$H$O9T$J$$$^$;$s$7(B, $B$3$N4+(B
$B9p$NBP>]HO0O30$G$9(B. 

$BK\4+9p$G$O(B, $B?.Mj$G$-$J$$%f!<%6$,B8:_$9$k%7%9%F%`>e$G$O(B, majordomo $B$N(B
$BBe$o$j$KB>$N%a!<%j%s%0%j%9%H4IM}%7%9%F%`$r;HMQ$9$k$3$H$r?d>)$7$^$9(B. 
FreeBSD $B$N(B Ports Collection $B$K$O$=$N$h$&$J%f!<%F%#%j%F%#$,$$$/$D$+B8:_(B
$B$7$^$9(B. 
END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-30

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Security Advisory: FreeBSD-SA-00:30.openssh
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Wed,  5 Jul 2000 16:12:36 -0700 (PDT)
  Message-Id: <20000705231236.8B9D237BCFB@hub.freebsd.org>
  X-Sequence: announce-jp 470

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
=============================================================================
FreeBSD-SA-00:30                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	OpenSSH UseLogin directive permits remote root access

$BJ,N`(B:		core
$B%b%8%e!<%k(B:	openssh
$B9pCNF|(B:		2000-07-05
$B%/%l%8%C%H(B:	Markus Friedl <markus@OpenBSD.org>
$B1F6AHO0O(B:	FreeBSD 4.0-RELEASE, $B=$@5F|0JA0$N(B FreeBSD 4.0-STABLE 
		$B$*$h$S(B 5.0-CURRENT
$B=$@5F|(B:		2000-06-11
$B%Y%s%@$N%9%F!<%?%9(B:	$B<eE@$K$D$$$FH/I=:Q(B
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

OpenSSH $B$O(B, $BDL?.$N0E9f2=$*$h$SG'>Z5!G=$rDs6!$9$k(B SSH1 secure shell
protocol $B$N<BAu$G$9(B ($B:G6a$N%P!<%8%g%s$G$O(B SSH2 $B$b<BAu$7$F$$$^$9(B).
OpenSSH $B$O;HMQ$K$D$$$F@)8B$r$7$J$$$h$&(B, $B%U%j!<$GDs6!$5$l$F$$$^$9(B. 

II.  $BLdBj$N>\:Y(B - Problem Description

sshd $B%5!<%P$O(B, $B0lHL$N%f!<%6%m%0%$%s$r=hM}$9$k$3$H$,$G$-$k$h$&(B, $BDL>o(B 
root $B8"8B$G<B9T$5$l$F$$$^$9(B. OpenSSH $B$K$O(B, $B%f!<%6%m%0%$%s$r%5!<%PFbIt(B
$B$G=hM}$;$:(B, /usr/bin/login $B%3%^%s%I7PM3$G9T$J$&$h$&$K$9$k(B UseLogin $B$H(B
$B$$$&@_Dj%*%W%7%g%s$,$"$j$^$9(B. $B$3$N%*%W%7%g%s$O%G%U%)%k%H$G$OM-8z$K$O$J(B
$B$C$F$$$^$;$s(B. 

OpenSSH $B$K$O(B, $B%j%b!<%H$N%f!<%6$,%5!<%P>e$GHsBPOCE*$K%3%^%s%I$r<B9T$G$-(B
$B$k$h$&$K$9$k5!G=$b$"$j$^$9(B. $B$3$N>l9g(B, $B%3%^%s%I$r<B9T$9$kA0$K(B UseLogin 
$B;XDj;R$,@5$7$/(B root $B8"8B$rMn$H$9=hM}$r9T$J$$$^$;$s(B. $B$D$^$j(B, root $B8"8B(B
$B$r;}$?$J$$%j%b!<%H$N%f!<%6$,(B, $B%m!<%+%k%7%9%F%`>e$N%3%^%s%I$r(B root $B8"8B(B
$B$G<B9T$9$k$3$H$,2DG=$G$9(B. 

$B%G%U%)%k%H$N@_Dj$G$O(B, OpenSSH $B$K$O$3$NLdBj$K$h$k<eE@$,B8:_$7$J$$$3$H$K(B
$BCm0U$7$F$/$@$5$$(B. $B$3$N%*%W%7%g%s$O(B, $BBgB??t$N%7%9%F%`$GI,MW$N$J$$$b$N$G(B
$B$9(B. 

OpenSSH $B$,%$%s%9%H!<%k$5$l$k$N$O(B, FreeBSD $B%7%9%F%`$N%$%s%9%H!<%k;~$K(B 
'crypto' $B%G%#%9%H%j%S%e!<%7%g%s$rA*Br$9$k$+(B, $B%=!<%9$+$i%3%s%Q%$%k$9$k(B
$B>l9g$G$O(B, $B9q:]HG(B RSA $B%i%$%V%i%j$rMQ0U$7$F$*$/$+(B, RSAREF $B$N(B port $B$r;vA0(B
$B$K%$%s%9%H!<%k$7$F$*$$$?>l9g$G$9(B. 

III. $B1F6AHO0O(B - Impact

sshd $B$N@_Dj$G(B UseLogin $B;XDj;R$rM-8z$K$7$?>l9g(B, $B%m!<%+%k%^%7%s$K(B SSH $B%"(B
$B%/%;%92DG=$J%j%b!<%H$N%f!<%6$,(B, $BG$0U$N%3%^%s%I$r(B root $B8"8B$G<B9T$9$k$3(B
$B$H$,2DG=$G$9(B. 

IV.  $BBP1~:v(B - Workaround

/etc/ssh/sshd_config $B%U%!%$%k$G(B 'UseLogin No' $B$r;XDj$7(B, $B0J2<$N%3%^%s%I(B
$B$r(B root $B$G<B9T$9$k$3$H$G(B SSH $B%5!<%P$r:F5/F0$9$k(B. 

# kill -HUP `cat /var/run/sshd.pid`

$B$3$NA`:n$K$h$j(B, $B?F%W%m%;%9$O:F@8@.$5$l(B, $B@_Dj%U%!%$%k$rFI$_9~$_D>$7$^$9(B. 
$B$=$N:]$K(B, $B$9$G$K3NN)$5$l$F$$$k(B SSH $B%;%7%g%s$rK8$2$k$3$H$O$"$j$^$;$s(B. 

$B:G=i$N5/F0$,@dBP%Q%9$G9T$J$o$l$F$$$J$$>l9g(B ($B$D$^$j(B "/usr/sbin/sshd" $B$H(B
$B$7$F$G$O$J$/(B, "sshd" $B$H$7$F<B9T$5$l$?>l9g(B), $B@5$7$/:F%9%?!<%H$G$-$J$$$H(B
$B$$$&%P%0$,(B sshd $B$KB8:_$9$k$3$H$KCm0U$7$F$/$@$5$$(B ($B$3$N%P%0$O(B, $B$3$N4+9p(B
$B$rMQ0U$7$F$$$k4V$KH/8+$5$l$^$7$?(B. 2000$BG/(B7$B7n(B3$BF|$N(B FreeBSD 5.0-CURRENT 
$B$H(B 4.0-STABLE $B$G=$@5$5$l$F$$$^$9(B). 

# ps -p `cat /var/run/sshd.pid`
  PID  TT  STAT      TIME COMMAND
 2110  ??  Ss     0:00.97 /usr/sbin/sshd

$B%5!<%P%W%m%;%9$,B8:_$7$J$/$J$C$?>l9g(B, $B0J2<$N%3%^%s%I$r(B root $B$G<B9T$7$F(B
$B%5!<%P$r:F%9%?!<%H$5$;$F$/$@$5$$(B. 

# /usr/sbin/sshd

V.   $B=$@5=hCV(B - Solution

$B0J2<$N$$$:$l$+$r9T$J$C$F$/$@$5$$(B. 

1) $B=$@5F|0J9_$N(B FreeBSD 4.0-STABLE $B$^$?$O(B 5.0-CURRENT $B$K%"%C%W%0%l!<%I(B
$B$9$k(B. FreeBSD $B$N$3$l$i$N%P!<%8%g%s$K$O(B 4.0-RELEASE $B$K4^$^$l$F$$$k$b$N(B
$B$h$j$b?7$7$$(B OpenSSH $B$N%P!<%8%g%s(B 2.1 $B$,4^$^$l$F$$$^$9(B. $B$3$N%P!<%8%g%s(B
$B$G$O(B, SSH2 $B%W%m%H%3%k$*$h$S(B DSA $B80$N%5%]!<%H$J$I$N5!G=6/2=$,$5$l$F$$$^(B
$B$9(B. 

2) Save this advisory as a file and extract the relevant patch for
your version of FreeBSD, or download the relevant patch and detached
PGP signature from the following location:

2) $BK\4+9p$r%U%!%$%k$KJ]B8$7(B, $B;HMQ$7$F$$$k(B FreeBSD $B%P!<%8%g%s$KE,9g$7$?(B
$B%Q%C%A$r<h$j=P$7$^$9(B. $B$"$k$$$O(B, $B0J2<$N(B URL $B$+$iE,9g$7$?%Q%C%A$H(B PGP $B=p(B
$BL>$r%@%&%s%m!<%I$7(B, PGP $B%f!<%F%#%j%F%#$r;HMQ$7$F=pL>$N8!>Z$r9T$J$$$^$9(B.

# fetch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:30/sshd.patch
# fetch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:30/sshd.patch.asc

$B0J2<$N%3%^%s%I$r(B root $B$G<B9T$7$^$9(B. 

# cd /usr/src/crypto/openssh
# patch -p < /path/to/patch/or/advisory
# cd /usr/src/secure/lib/libssh
# make all
# cd /usr/src/secure/usr.sbin/sshd
# make all install
# kill -HUP `cat /var/run/sshd.pid`

$B!VBP1~:v!W$N>O$K5-=R$7$?Cm0U;v9`$r;2>H$7(B, sshd $B%5!<%P%W%m%;%9$,B8:_$7(B
$B$F$$$k$3$H$r3NG'$7$F$/$@$5$$(B. 

VI.   $B%Q%C%A(B - Patch

   Index: sshd.c
   ===================================================================
   RCS file: /home/ncvs/src/crypto/openssh/sshd.c,v
   retrieving revision 1.6
   diff -u -r1.6 sshd.c
   --- sshd.c	2000/03/09 14:52:31	1.6
   +++ sshd.c	2000/07/04 03:40:46
   @@ -2564,7 +2564,13 @@
    	char *argv[10];
    #ifdef LOGIN_CAP
    	login_cap_t *lc;
   +#endif
    
   +	/* login(1) is only called if we execute the login shell */
   +	if (options.use_login && command != NULL)
   +		options.use_login = 0;
   +
   +#ifdef LOGIN_CAP
    	lc = login_getpwclass(pw);
    	if (lc == NULL)
    		lc = login_getclassbyname(NULL, pw);

END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-31

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Ports Security Advisory: FreeBSD-SA-00:31.canna [REVISED]
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Tue, 11 Jul 2000 15:02:20 -0700 (PDT)
  Message-Id: <20000711220220.4D26637B8FC@hub.freebsd.org>
  X-Sequence: announce-jp 477

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
=============================================================================
FreeBSD-SA-00:31                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	Canna port contains remote vulnerability [REVISED]

$BJ,N`(B:		ports
$B%b%8%e!<%k(B:	Canna
$B9pCNF|(B:		2000-07-05
$B2~D{F|(B:		2000-07-11
$B1F6AHO0O(B:	Ports Collection
$B=$@5F|(B:		2000-06-29
$B%/%l%8%C%H(B:	Shadow Penguin Security
		<http://shadowpenguin.backsection.net/advisories/index.html>
$B%Y%s%@$N%9%F!<%?%9(B:	$BG'<1:Q(B
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

Canna ($BLuCm(B: $B!X$+$s$J!Y(B) $B$O2>L>4A;zJQ49%5!<%S%9%W%m%0%i%`$G$9(B. 

II.  $BLdBj$N>\:Y(B - Problem Description

$B!X$+$s$J!Y$N%5!<%P%W%m%0%i%`$K$O(B, $B%j%b!<%H$N%f!<%6$,%f!<%6(B 'bin' $B8"8B(B
$B$GG$0U$N%3!<%I$r%m!<%+%k%7%9%F%`>e$G<B9T$5$;$k967b$,2DG=$H$J$k(B buffer
overflow $B$N%P%0$,B8:_$7$^$9(B. 

Canna $B$N(B port $B$O%G%U%)%k%H$G%$%s%9%H!<%k$5$l$k$b$N$G$O$J$/(B, FreeBSD 
$B%7%9%F%`$N0lIt$r9=@.$9$k$b$N$G$b$"$j$^$;$s(B. $B$=$l$i$O(B, 3500 $B$rD6$($k%5(B
$B!<%I%Q!<%F%#@=$N%"%W%j%1!<%7%g%s$,$9$0$K%$%s%9%H!<%k$G$-$k7A$G<}$a$i$l(B
$B$F$$$k(B FreeBSD Ports Collection $B$N0lIt$G$9(B. FreeBSD 3.5 $B$H$H$b$K=P2Y$5(B
$B$l$?(B Ports Collection $B$O(B, $B%j%j!<%98e$KLdBj$,8+$D$+$C$?$?$a$K$3$NLdBj$r(B
$B4^$s$G$$$^$9(B.

FreeBSD $B$G$O(B, $B$3$N$h$&$J%5!<%I%Q!<%F%#@=%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#(B
$BLdBj$KBP$7$F(B, $BFC$K2?$+$r<gD%$9$k$3$H$O$"$j$^$;$s(B ($BLuCm(B: Ports
Collection $B$KF~$C$F$$$k$+$i$H$$$C$F(B, FreeBSD $B$N3+H/<T$?$A$,$=$N%"%W%j(B
$B%1!<%7%g%s$,0BA4$G$"$k$HI>2A$7$?$o$1$G$O$"$j$^$;$s(B). $B$?$@$7(B, $B%;%-%e%j(B
$B%F%#LdBj$KBP$7$FBg$-$J1F6A$r;}$D$h$&$J(B ports $B$KBP$9$k%;%-%e%j%F%#4F::(B
$B$rDs6!$9$Y$/(B, $B8=:_EXNOCf$G$9(B. 

III. $B1F6AHO0O(B - Impact

$B%j%b!<%H$N%f!<%6$,(B, $B%f!<%6(B 'bin' $B$N8"8B$GG$0U$N%3!<%I$r%m!<%+%k%7%9%F(B
$B%`>e$G<B9T$9$k$3$H$,2DG=$G$9(B. $B%m!<%+%k%7%9%F%`$N@_Dj$K$h$C$F$O(B, $B%m!<%+(B
$B%k%7%9%F%`$NB>$N<eE@$rMxMQ$9$k$3$H$G(B, $B967b<T$O$5$i$K8"8B$r9b$a$k$3$H$,(B
$B$G$-$k$+$b$7$l$^$;$s(B. 

Canna $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$J$1$l$P(B, $B$=$N%7%9%F%`$K$3$N(B
$BLdBj$K$D$$$F$N%;%-%e%j%F%#>e$N<eE@$O$"$j$^$;$s(B.

IV.  $BBP1~:v(B - Workaround

$B0J2<$N$$$:$l$+$r9T$J$C$F$/$@$5$$(B. 

1) Canna $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$k>l9g(B, $B$=$l$r%"%s%$%s%9(B
$B%H!<%k$9$k(B. 

2) ipfw(8) $B$^$?$O(B ipf(8) $B$r;HMQ$7$F(B, $B!X$+$s$J!Y$N%5!<%P$X$N%j%b!<%H$+(B
$B$i$N%"%/%;%9$r@)8B$9$k$3$H$r8!F$$9$k(B. 

3) $B!X$+$s$J!Y$N%5!<%P%[%9%H$K(B /etc/hosts.canna $B%U%!%$%k$r:n@.$7(B, 
$B!X$+$s$J!Y$N%5!<%P$X$N%"%/%;%9$r5v2D$9$k%[%9%H$rNs5-$9$k(B. $B$?$H$($P(B, 
localhost $B$+$i$N%"%/%;%9$N$_5v2D$9$k>l9g(B, /etc/hosts.canna $B%U%!%$%k$N(B
$BFbMF$r0J2<$N$h$&$K$7$^$9(B. 

        localhost
        unix

localhost $B$H(B IP $B%"%I%l%9$,(B x.y.z.w $B$N(B some-other-host.com $B$+$i$N%"%/%;(B
$B%9$r5v2D$9$k>l9g(B, $B0J2<$N$h$&$K$7$^$9(B. 

        localhost
        unix
        x.y.z.w

V.   $B=$@5=hCV(B - Solution

$B0J2<$N$$$:$l$+$r9T$J$C$F$/$@$5$$(B. 

1) Ports Collection $BA4BN$r99?7$7$F(B, Canna $B$N(B port $B$r:F%3%s%Q%$%k$9$k(B.

2) $B8E$$(B package $B$r%"%s%$%s%9%H!<%k$7(B, $B=$@5F|0J9_$N?7$7$$(B package $B$r%$(B
$B%s%9%H!<%k$9$k(B. $B?7$7$$%Q%C%1!<%8$O(B, $B0J2<$N>l=j$+$iF~<j2DG=$G$9(B. 

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/japanese/ja-Canna-3.2.2.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/japanese/ja-Canna-3.2.2.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/japanese/ja-Canna-3.2.2.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/japanese/ja-Canna-3.2.2.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/japanese/ja-Canna-3.2.2.tgz

Note: it may be several days before updated packages are available.

$BCm0U(B: $B99?7$5$l$?(B packages $B$,Ds6!$5$l$k$^$G?tF|$+$+$k$+$b$7$l$^$;$s(B. 

3) $B0J2<$N>l=j$+$i(B Canna $B$N?7$7$$(B port $B%9%1%k%H%s$r%@%&%s%m!<%I$7(B,
$B$=$l$r;HMQ$7$F(B Canna $B$N(B port $B$r:F%3%s%Q%$%k$9$k(B.

http://www.freebsd.org/ports/

4) portcheckout $B%f!<%F%#%j%F%#$r;HMQ$9$k$H(B, $B>e5-(B (3) $B$r<+F0E*$K(B
$B9T$J$&$3$H$,$G$-$^$9(B.  portcheckout $B$O(B, /usr/ports/devel/portcheckout 
$B$d(B, $B0J2<$N>l=j$+$iF~<j2DG=$G$9(B. 

ftp://ftp.freebsd.org/pub/FreeBSD/ports/packages/devel/portcheckout-1.0.tgz

VI.   $B2~D{MzNr(B - Revision History

v1.0  2000-07-05  $B=iHG8x3+(B
v1.1  2000-07-11  $B>.EgH%;a(B <kjm@rins.ryukoku.ac.jp> $B$+$iDs<($5$l$?%"%/(B
                  $B%;%9@)8fJ}K!$rDI2C(B, package $B$N(B URL $B=$@5(B, Ports
                  Collection $B$N5,LO$r99?7(B

END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-32

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Ports Security Advisory: FreeBSD-SA-00:32.bitchx
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Wed,  5 Jul 2000 16:14:42 -0700 (PDT)
  Message-Id: <20000705231442.2469737BCB2@hub.freebsd.org>
  X-Sequence: announce-jp 472

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
=============================================================================
FreeBSD-SA-00:32                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	bitchx port contains client-side vulnerability

$BJ,N`(B:		ports
$B%b%8%e!<%k(B:	bitchx
$B9pCNF|(B:		2000-07-05
$B1F6AHO0O(B:	Ports Collection
$B=$@5F|(B:		2000-07-03
$B%Y%s%@$N%9%F!<%?%9(B:	$B%Q%C%A8x3+:Q(B
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

bitchx $B$O?M5$$N$"$k(B IRC $B%/%i%$%"%s%H%W%m%0%i%`$G$9(B. 

II.  $BLdBj$N>\:Y(B - Problem Description

bitchx $B%/%i%$%"%s%H$O(B, $B%j%b!<%H$N(B IRC $B%f!<%6$+$iAw$i$l$k%A%c%M%k>7BT%a(B
$B%C%;!<%8$K4^$^$l$k=q<0J8;zNs$r8m$C$F=hM}$7$F$7$^$$$^$9(B. $B$3$l$K$h$j(B, $B%m(B
$B!<%+%k$N%/%i%$%"%s%H$r%/%i%C%7%e$5$;$?$j(B, $B$*$=$i$/%m!<%+%k%f!<%68"8B$G(B
$BG$0U$N%3!<%I$r<B9T$5$;$k$3$H$,2DG=$G$9(B. 

bitchx $B$N(B port $B$O%G%U%)%k%H$G%$%s%9%H!<%k$5$l$k$b$N$G$O$J$/(B, FreeBSD 
$B%7%9%F%`$N0lIt$r9=@.$9$k$b$N$G$b$"$j$^$;$s(B. $B$=$l$i$O(B, 3400 $B$rD6$($k%5(B
$B!<%I%Q!<%F%#@=$N%"%W%j%1!<%7%g%s$,$9$0$K%$%s%9%H!<%k$G$-$k7A$G<}$a$i$l(B
$B$F$$$k(B FreeBSD Ports Collection $B$N0lIt$G$9(B. FreeBSD 4.0 $B$*$h$S(B FreeBSD
3.5 $B$H$H$b$K=P2Y$5$l$?(B Ports Collection $B$O(B, $B%j%j!<%98e$KLdBj$,8+$D$+$C(B
$B$?$?$a$K$3$NLdBj$r4^$s$G$$$^$9(B.

FreeBSD $B$G$O(B, $B$3$N$h$&$J%5!<%I%Q!<%F%#@=%"%W%j%1!<%7%g%s$N%;%-%e%j%F%#(B
$BLdBj$KBP$7$F(B, $BFC$K2?$+$r<gD%$9$k$3$H$O$"$j$^$;$s(B ($BLuCm(B: Ports
Collection $B$KF~$C$F$$$k$+$i$H$$$C$F(B, FreeBSD $B$N3+H/<T$?$A$,$=$N%"%W%j(B
$B%1!<%7%g%s$,0BA4$G$"$k$HI>2A$7$?$o$1$G$O$"$j$^$;$s(B). $B$?$@$7(B, $B%;%-%e%j(B
$B%F%#LdBj$KBP$7$FBg$-$J1F6A$r;}$D$h$&$J(B ports $B$KBP$9$k%;%-%e%j%F%#4F::(B
$B$rDs6!$9$Y$/(B, $B8=:_EXNOCf$G$9(B. 

III. $B1F6AHO0O(B - Impact

$B%j%b!<%H$N(B IRC $B%f!<%6$,(B, $B%m!<%+%k$N%/%i%$%"%s%H$r%/%i%C%7%e$5$;$k$3$H(B
$B$,2DG=$G$9(B. $B$=$7$F(B, $B$*$=$i$/%m!<%+%k%f!<%6$N8"8B$G%3!<%I$r<B9T$9$k$3$H(B
$B$,2DG=$G$9(B. 

bitchx $B$N(B port/package $B$r%$%s%9%H!<%k$7$F$$$J$1$l$P(B, $B$=$N%7%9%F%`$K$3(B
$B$NLdBj$K$D$$$F$N%;%-%e%j%F%#>e$N<eE@$O$"$j$^$;$s(B.

IV.  $BBP1~:v(B - Workaround

$B0J2<$N(B bitchx $B%3%^%s%I$r<B9T$7$F(B, $B%A%c%M%k>7BT%a%C%;!<%8$N=hM}$rL58z$K(B
$B$9$k(B. 

/ignore * invites

V.   $B=$@5=hCV(B - Solution

$B0J2<$N$$$:$l$+$r9T$J$C$F$/$@$5$$(B. 

1) Ports Collection $BA4BN$r99?7$7$F(B, Canna $B$N(B port $B$r:F%3%s%Q%$%k$9$k(B.

2) $B8E$$(B package $B$r%"%s%$%s%9%H!<%k$7(B, $B=$@5F|0J9_$N?7$7$$(B package $B$r%$(B 
$B%s%9%H!<%k$9$k(B. $B?7$7$$%Q%C%1!<%8$O(B, $B0J2<$N>l=j$+$iF~<j2DG=$G$9(B. 

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-3-stable/irc/bitchx-1.0c16.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/irc/bitchx-1.0c16.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-4-stable/irc/bitchx-1.0c16.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/irc/bitchx-1.0c16.tar.gz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/alpha/packages-5-current/irc/bitchx-1.0c16.tar.gz

NOTE: It may be several days before updated packages are available. Be
sure to check the file creation date on the package, because the
version number of the software has not changed.

$BCm0U(B: $B99?7$5$l$?(B packages $B$,Ds6!$5$l$k$^$G?tF|$+$+$k$+$b$7$l$^$;$s(B. 
$B99?7$5$l$F$b$=$N%=%U%H%&%'%"$N%P!<%8%g%sHV9f$OJQ$o$j$^$;$s$N$G(B, $B$=$N(B 
package $B$N%U%!%$%k$N:n@.F|$rI,$:3NG'$9$k$h$&$K$7$F$/$@$5$$(B. 

3) $B0J2<$N>l=j$+$i(B bitchx $B$N?7$7$$(B port $B%9%1%k%H%s$r%@%&%s%m!<%I$7(B, 
$B$=$l$r;HMQ$7$F(B bitchx $B$N(B port $B$r:F%3%s%Q%$%k$9$k(B.

http://www.freebsd.org/ports/

4) portcheckout $B%f!<%F%#%j%F%#$r;HMQ$9$k$H(B, $B>e5-(B (3) $B$r<+F0E*$K(B
$B9T$J$&$3$H$,$G$-$^$9(B.  portcheckout $B$O(B, /usr/ports/devel/portcheckout 
$B$d(B, $B0J2<$N>l=j$+$iF~<j2DG=$G$9(B. 

ftp://ftp.freebsd.org/pub/FreeBSD/ports/packages/devel/portcheckout-1.0.tgz
END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)--
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=FreeBSD-SA-00-33

BEGIN------------------- $B$3$3$+$i(B ------------------------
 $B$3$N%a!<%k$O(B, announce-jp $B$KN.$l$?(B

  Subject: ANNOUNCE: FreeBSD Security Advisory: FreeBSD-SA-00:33.kerberosIV
  From: FreeBSD Security Advisories <security-advisories@freebsd.org>
  Date: Wed, 12 Jul 2000 15:36:59 -0700 (PDT)
  Message-Id: <200007122236.PAA18508@freefall.freebsd.org>
  X-Sequence: announce-jp 478

 $B$rF|K\8lLu$7$?$b$N$G$9(B. 

 $B86J8$O(B PGP $B=pL>$5$l$F$$$^$9$,(B, $B$3$NF|K\8lLu$O(B PGP $B=pL>$5$l$F$$$^$;$s(B. 
 $B%Q%C%AEy$NFbMF$,2~cb$5$l$F$$$J$$$3$H$r3NG'$9$k$?$a$K(B PGP $B$N%A%'%C%/$r(B
 $B9T$J$&$K$O(B, $B86J8$r;2>H$7$F$/$@$5$$(B. 

 $BF|K\8lLu$O(B FreeBSD $BF|K\8l%I%-%e%a%s%F!<%7%g%s%W%m%8%'%/%H(B(doc-jp)$B$,;29M$N(B
 $B$?$a$KDs6!$9$k$b$N$G(B, doc-jp $B$O(B $B$=$NFbMF$K$D$$$F$$$+$J$kJ]>Z$b$$$?$7$^$;$s(B.
 $BF|K\8lLu$K$D$$$F$N$*Ld$$9g$o$;$O(B doc-jp@jp.FreeBSD.org $B$^$G$*4j$$$7$^$9(B.

--($B$3$3$+$i(B)
=============================================================================
FreeBSD-SA-00:33                                           Security Advisory
                                                                FreeBSD, Inc.

$B%H%T%C%/(B:	kerberosIV distribution contains multiple vulnerabilities
		under FreeBSD 3.x

$BJ,N`(B:		core
$B%b%8%e!<%k(B:	kerberosIV
$B9pCNF|(B:		2000-07-12
$B%/%l%8%C%H(B:	Assar Westerlund <assar@FreeBSD.org>
$B1F6AHO0O(B:	$B=$@5F|$h$jA0$N(B FreeBSD 3.x $B%7%9%F%`(B
$B=$@5F|(B:		2000-07-06
FreeBSD $B$K8GM-$+(B:	NO

I.   $BGX7J(B - Background

KTH Kerberos $B$O(B, FreeBSD $B$N(B base $B%7%9%F%`$NDI2C%3%s%]!<%M%s%H$H$7$FG[(B
$BIU$5$l$F$$$k(B Kerberos 4 $B%W%m%H%3%k$N<BAu$G$9(B. 

II.  $BLdBj$N>\:Y(B - Problem Description

$B0JA0(B, FreeBSD Security Advisory (SA-00:20) $B$G(B, MIT Kerberos 5 $B$N(B port 
$B$K$D$$$F$N%;%-%e%j%F%#>e$NLdBj$r<h$j>e$2$^$7$?(B. $B$=$N;~E@$G$O(B, FreeBSD 
$B$K$*$1$k(B Kerberos $B$N<BAu$K$O$=$NLdBj$,$J$$$H9M$($i$l$F$$$^$7$?(B. $B$7$+$7(B, 
$B:G6a$K$J$C$F(B FreeBSD 3.x $B$K4^$^$l$k8E$$%P!<%8%g%s$N(B KTH Kerberos 4 $B$K(B
$B$O(B, $B<B:]$K$O$=$l$i$NLdBj$N$$$/$D$+$,$"$k$3$H$,H=L@$7$^$7$?(B. FreeBSD
4.0-RELEASE $B0J9_$G$O$3$NLdBj$K$h$k1F6A$O$"$j$^$;$s$,(B, FreeBSD
3.5-RELEASE $B$O$3$NLdBj$r4^$s$G$$$^$9(B. 

$B<eE@$NFbLu$K$D$$$F$O@53N$K$OJ,$+$C$F$$$^$;$s(B. $B$7$+$7(B, $B%m!<%+%k$N%f!<%6(B
$B$,(B Kerberos $B$N%/%i%$%"%s%H$H%5!<%P$NN>J}$N%7%9%F%`>e$G(B root $B8"8B$rC%$&(B
$B$3$H$,$G$-$kLdBj$H(B, $B%j%b!<%H$N%f!<%6$,(B Kerberos $B$N%5!<%P%7%9%F%`>e$G(B 
root $B8"8B$rC%$&$3$H$,$G$-$kLdBj$r4^$s$G$$$k$H9M$($i$l$^$9(B. $B%/%i%$%"%s(B
$B%H$K$D$$$F$O(B, Kerberos $B$N%/%i%$%"%s%H$N5!G=$,<B:]$K@_Dj$5$l$F$$$kI,MW(B
$B$O$J$/(B, $BC1$K%P%$%J%j$,%7%9%F%`>e$KB8:_$9$k$@$1$G<eE@$K$J$j$^$9(B. 

III. $B1F6AHO0O(B - Impact

$B%m!<%+%k$^$?$O%j%b!<%H$N%f!<%6$,(B, Kerberos $B$r%/%i%$%"%s%H$^$?$O%5!<%P(B
$B$H$7$F<B9T$7$F$$$k%7%9%F%`$N(B root $B8"8B$rC%$&$3$H$,$G$-$^$9(B. 

FreeBSD 3.x $B%7%9%F%`$K(B KerberosIV $B%G%#%9%H%j%S%e!<%7%g%s$r%$%s%9%H!<%k(B
$B$7$F$$$J$1$l$P(B, $B$=$N%7%9%F%`$K$3$NLdBj$K$D$$$F$N%;%-%e%j%F%#>e$N<eE@$O(B
$B$"$j$^$;$s(B.

IV.  $BBP1~:v(B - Workaround

$B<eE@$N@-<A>e(B, $B1F6A$r<u$1$k%W%m%0%i%`$*$h$S%M%C%H%o!<%/%5!<%S%9$,J#?tB8(B
$B:_$7$^$9(B. $B0J2<$N%i%$%V%i%j$H%f!<%F%#%j%F%#$O(B, KerberosIV $B%G%#%9%H%j%S(B
$B%e!<%7%g%s$G%$%s%9%H!<%k$5$l$k$b$N$G$9(B. $B$3$l$i$N%U%!%$%k$r:o=|$J$$$7$O(B
$BHs(B Kerberos $BHG$N$b$N$KCV$-49$($F(B, Kerberos $B4XO"$N%3!<%I$O$9$Y$FL58z$K(B
$B$7$J$1$l$P$J$j$^$;$s(B. 

bin/rcp (*)
sbin/dump (*)
sbin/restore (*)
usr/bin/kadmin
usr/bin/kauth
usr/bin/kdestroy
usr/bin/kinit
usr/bin/klist
usr/bin/ksrvtgt
usr/bin/telnet (*)
usr/bin/cvs (*)
usr/bin/passwd (*)
usr/bin/rlogin (*)
usr/bin/rsh (*)
usr/bin/su (*)
usr/lib/libacl.a
usr/lib/libacl_p.a
usr/lib/libacl.so.3
usr/lib/libacl.so
usr/lib/libkadm.a
usr/lib/libkadm_p.a
usr/lib/libkadm.so.3
usr/lib/libkadm.so
usr/lib/libkafs.a
usr/lib/libkafs_p.a
usr/lib/libkafs.so.3
usr/lib/libkafs.so
usr/lib/libkdb.a
usr/lib/libkdb_p.a
usr/lib/libkdb.so.3
usr/lib/libkdb.so
usr/lib/libkrb.a
usr/lib/libkrb_p.a
usr/lib/libkrb.so.3
usr/lib/libkrb.so
usr/lib/libtelnet.a
usr/lib/libtelnet_p.a
usr/libexec/kauthd
usr/libexec/kipd
usr/libexec/kpropd
usr/libexec/telnetd (*)
usr/libexec/rlogind (*)
usr/libexec/rshd (*)
usr/sbin/ext_srvtab
usr/sbin/kadmind
usr/sbin/kdb_destroy
usr/sbin/kdb_edit
usr/sbin/kdb_init
usr/sbin/kdb_util
usr/sbin/kerberos
usr/sbin/kip
usr/sbin/kprop
usr/sbin/ksrvutil
usr/sbin/kstash

The files marked with a "(*)" are part of the base FreeBSD system when
the Kerberos distribution is not installed, and are replaced when
Kerberos is installed. Therefore you will need to replace them with
non-Kerberos versions from another system, or perform a recompilation
or reinstallation of FreeBSD after removal, if you wish to continue to
use them.

"(*)" $B$r$D$1$F$$$k%U%!%$%k$O(B, Kerberos $B%G%#%9%H%j%S%e!<%7%g%s$r%$%s%9(B
$B%H!<%k$7$F$$$J$$>l9g(B FreeBSD $B$N(B base $B%7%9%F%`$K4^$^$l$F$$$k$b$N$G$9$,(B,
Kerberos $B$r%$%s%9%H!<%k$9$k$HCV$-49$($i$l$^$9(B. $B$7$?$,$C$F(B, $B$3$l$i$r;H(B
$BMQ$7B3$1$k>l9g$K$O(B, $BHs(B Kerberos $BHG$N$b$N$HCV$-49$($k$+(B, $B0lEY:o=|$7$F$+(B
$B$i(B FreeBSD $B$r:F%3%s%Q%$%k(B, $B:F%$%s%9%H!<%k$9$kI,MW$,$"$j$^$9(B. 

security/ssh $B$N(B port $B$N$h$&$J(B, Kerberos $BBP1~$N(B ports $B$r%$%s%9%H!<%k$7(B
$B$F$$$k>l9g(B, $B$=$l$i$K$D$$$F$b:o=|$9$k$+(B, Kerberos $B$NBP1~$rL58z$K$7$F:F(B
$B%3%s%Q%$%k$9$Y$-$G$9(B. 

$B;CDjE*$JA<CV$H$7$F$O(B, $B%"%/%;%9@)8f5!G=$r;HMQ$7$F(B, $B%j%b!<%H$N%7%9%F%`$,(B
$B<eE@$N$"$k(B Kerberos $B%5!<%P$N(B Kerberos $B%5!<%S%9$K@\B3$9$k$N$r5qH]$9$k$3(B
$B$H$,$G$-$^$9(B ($B6-3&%U%!%$%"%&%)!<%k$d1F6A$N$"$k%^%7%s>e$N%m!<%+%k$N%U%!(B
$B%$%"%&%)!<%k$N$I$A$i$+$G9T$J$$$^$9(B. $B>\:Y$O(B ipfw(8) $B$N%^%K%e%"%k;2>H(B). 

V.   $B=$@5=hCV(B - Solution

$B<eE@$N$"$k(B FreeBSD 3.x $B%7%9%F%`$r(B, $B=$@5F|0J9_$N$b$N$K%"%C%W%0%l!<%I$7(B
$B$^$9(B ($B=$@5F|0J9_$N(B FreeBSD 3.5-STABLE $B$+(B, 4.0-RELEASE, 4.0-STABLE). 
FreeBSD $B%7%9%F%`$r%=!<%9$+$i%"%C%W%0%l!<%I$9$kJ}K!$K$D$$$F$O(B, 
http://www.freebsd.org/handbook/makeworld.html $B$K(B, $B>\$7$/:\$C$F$$$^$9(B.

$B%"%C%W%0%l!<%I$K:]$7$F$O(B, $B%7%9%F%`>e$K8E$$%P%$%J%j$,3N<B$K;D$i$J$$$h$&(B
$B$K$7$F(B, Kerberos $B$N%3!<%I$r%$%s%9%H!<%k$9$k$h$&$K$7$F$/$@$5$$(B. 

Kerberos $B$KBP1~$7$F$$$k(B ports $B$N:F%3%s%Q%$%k$K$D$$$F$O(B IV $B>O$r;2>H$7$F(B
$B$/$@$5$$(B. 
END--------------------- $B$3$3$^$G(B ------------------------

----Next_Part(Fri_Jul_14_22:16:44_2000_722)----
