Better explanation than the previous url (easier to just read it than

having to 'click away' git-svn-id: http://svn.linuxfromscratch.org/LFS/trunk/BOOK@951 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689
author: Gerard Beekmans <gerard@linuxfromscratch.org> 2001-08-09 01:47:42 +0000
committer: Gerard Beekmans <gerard@linuxfromscratch.org> 2001-08-09 01:47:42 +0000
commit: 7511586fd553898e8f6ffe1cb49a5b457f4289cc (patch)
tree: a29ae79c55755fd6d388e1362ef33157a85ee048 /chapter06/ed-exp.xml
parent: a6fb8e15780859f4c0c2fb2faba419084a006ff6 (diff)
1 files changed, 6 insertions, 4 deletions
diff --git a/chapter06/ed-exp.xml b/chapter06/ed-exp.xml
index 0914671f5..41e4d35e4 100644
--- a/chapter06/ed-exp.xml
+++ b/chapter06/ed-exp.xml
@@ -1,8 +1,10 @@
 <sect2>
 <title>Command explanations</title>
 
-<para>The sed commands fix a symlink vulnerability in ed. See
-<ulink url="http://www.securityfocus.com/templates/advisory.html?id=3308">
-http://www.securityfocus.com/templates/advisory.html?id=3308</ulink> for
-more information.</sect2>
+<para>The sed commands fix a symlink vulnerability in ed. The ed
+executable creates files in /tmp with predictable names. By using
+various symlink attacks, it is possible to have ed write to files 
+it should not, change the permissions of various files, etc.</para>
+
+</sect2>
author	Gerard Beekmans <gerard@linuxfromscratch.org>	2001-08-09 01:47:42 +0000
committer	Gerard Beekmans <gerard@linuxfromscratch.org>	2001-08-09 01:47:42 +0000
commit	7511586fd553898e8f6ffe1cb49a5b457f4289cc (patch)
tree	a29ae79c55755fd6d388e1362ef33157a85ee048 /chapter06/ed-exp.xml
parent	a6fb8e15780859f4c0c2fb2faba419084a006ff6 (diff)