LDFLAGS of the Makefile
Damien Miller
djm at mindrot.org
Wed Apr 12 09:23:45 EST 2000
On Tue, 11 Apr 2000, H.G.Borrmann wrote:
> The resultant makefile has the line:
>
> LDFLAGS=-L. -L/usr/local/lib -L/client/lib
>
> As a consequence a dot (the current directory) appears in the PATH of the Loader Section of ssh at the
> first place! That mean that a local user my replace the shared libraries libc.a, libnsl.a and libz.a by his own
> versions and manipulate the system as root, because ssh is installed suid root.
Openssh 1.2.3 has some configure trickery to prevent this particular
braindamage. It should set the -blibpath option to the linker
specifying an explicit library search path.
I would be interested to see why this isn't happening.
-d
--
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm at mindrot.org (home) -or- djm at ibs.com.au (work)
More information about the openssh-unix-dev
mailing list