From 80c6a0958a927706d8dffd81301511c83289496f Mon Sep 17 00:00:00 2001
From: Joakim Tjernlund <joakim.tjernlund@transmode.se>
Date: Wed, 6 Oct 2004 11:34:32 +0000
Subject: Peter S. Mazinger writes: Hello!

Here is the modified unsecvars patch that applies to cvs.
---
 ldso/include/unsecvars.h | 26 ++++++++++++++++++++++++++
 1 file changed, 26 insertions(+)
 create mode 100644 ldso/include/unsecvars.h

(limited to 'ldso/include/unsecvars.h')

diff --git a/ldso/include/unsecvars.h b/ldso/include/unsecvars.h
new file mode 100644
index 000000000..5380f7363
--- /dev/null
+++ b/ldso/include/unsecvars.h
@@ -0,0 +1,26 @@
+/* 
+ * Environment variable to be removed for SUID programs.  The names are all
+ * stuffed in a single string which means they have to be terminated with a
+ * '\0' explicitly.
+ */
+
+#define UNSECURE_ENVVARS		\
+	"LD_AOUT_PRELOAD\0"		\
+	"LD_AOUT_LIBRARY_PATH\0"	\
+	"LD_PRELOAD\0"			\
+ 	"LD_LIBRARY_PATH\0"		\
+	"LD_DEBUG\0"			\
+	"LD_DEBUG_OUTPUT\0"		\
+	"HOSTALIASES\0"			\
+	"LOCALDOMAIN\0"			\
+	"RES_OPTIONS\0"			\
+	"TMPDIR\0"
+
+/* 
+ * These environment variables are defined by glibc but ignored in
+ * uClibc, but may very well have an equivalent in uClibc.
+ *
+ * MALLOC_TRACE, RESOLV_HOST_CONF, TZDIR, GCONV_PATH, LD_USE_LOAD_BIAS,
+ * LD_PROFILE, LD_ORIGIN_PATH, LOCPATH, NLSPATH
+ */
+
-- 
cgit v1.2.3