Re: keynote DSO
On Sun, May 16, 2004 at 12:10:16PM +0200, Fabio Massimo Di Nitto wrote:
> On Sun, 16 May 2004 simon@nuit.ca wrote:
>
> >
> > i'm building apache here, and i just noticed something rather odd:
> >
> > gcc -DLINUX=22 -DTARGET=\"apache\" -DDB_DBM_HSEARCH=1
> > -DDEV_RANDOM=/dev/random -DUSE_HSREGEX -DAPACHE_SSL -O1 -g -Wall
> > -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 `../apaci` -o htpasswd
> > -L../os/unix -L../ap htpasswd.o -lm -lap -los -L/home/ben/work/KeyNote
> > -lkeynote -lm -lpthread -lcrypt -ldb -ldb -lexpat -ldl
> > -L/usr/local/ssl/lib -lssl -lcrypto
> >
> > note the "-L/home/ben/work/KeyNote". why is that hard-coded? it seems to
> > be hard-coded anyway.
>
> It is hardcoded in the Configure patch from apache-ssl. It has no side
> effects since apache build-deps on libkeynote-dev
... _unless_ there's actually _is_ a user 'ben' on the box and he has
a tweaked version of keynote ....
> where it finds the proper headers.
What headers? Doesn't '-L' set the library search path. I'd consider this
a security thread. A smart intruder might place his version of libkeynote
into '/home/ben/work/KeyNote' and hell breaks lose.
Just my 0.02$
Ralf Mattes
> Fabio
>
> --
> <user> fajita: step one
> <fajita> Whatever the problem, step one is always to look in the error log.
> <user> fajita: step two
> <fajita> When in danger or in doubt, step two is to scream and shout.
>
>
> --
> To UNSUBSCRIBE, email to debian-apache-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: