[Pkg-sysvinit-devel] Bug#447352: /etc/init.d/hostname.sh: input sanitizing?
Marc Haber
mh+debian-bugs at zugschlus.de
Sat Oct 20 13:19:30 UTC 2007
Package: initscripts
Version: 2.86.ds1-38.1
Severity: minor
Hi,
/etc/init.d/hostname.sh hands over whatever it reads to /bin/hostname
verbatim. This can lead to numerous software doing funny things with
the host name.
I do not have a clue which characters are/should be allowed in a
hostname and/or whether there is a definition for it (hence the
Severity: minor), but I'd like to suggest basic input sanitizing which
at least prevents nonsense like trailing blanks from being passed to
the operating system.
Greetings
Marc
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.22.9-scyw00225 (PREEMPT)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages initscripts depends on:
ii debianutils 2.25.1 Miscellaneous utilities specific t
ii e2fsprogs 1.40.2-1 ext2 file system utilities and lib
ii libc6 2.6.1-5 GNU C Library: Shared libraries
ii lsb-base 3.1-24 Linux Standard Base 3.1 init scrip
ii mount 2.13-8 Tools for mounting and manipulatin
ii sysvinit-utils 2.86.ds1-38.1 System-V-like utilities
Versions of packages initscripts recommends:
ii psmisc 22.5-1 Utilities that use the proc filesy
-- no debconf information
More information about the Pkg-sysvinit-devel
mailing list