Date: Mon, 07 May 2001 11:06:18 -0700
From: Nick Sayer <[EMAIL PROTECTED]>
Cc: Hajimu UMEMOTO <[EMAIL PROTECTED]>, [EMAIL PROTECTED]
Lawrence Greenfield wrote:
> I've applied this patch against imapd.c. pop3d doesn't currently have
> this problem since it never services more than one connection.
Au Contraire, pop3d does indeed have the same problem. To duplicate it,
you connect to the pop3s port with 'openssl s_client', QUIT, then
quickly telnet into the pop3s port. You will get a non-SSL pop3 service
response because argv got trashed by setproctitle().
I'm extremely confused how this could happen. I just tried it against
my test server to be sure, and couldn't reproduce this.
pop3d doesn't reuse processes, so after the first connection (with
openssl s_client) exits, it doesn't respond to the 2nd connection
(with telnet). A different process is fork'd and exec'd, so the argv
is brand new.
Have you actually done this and seen this happen?
Larry
