This is the mail archive of the gdb@sourceware.cygnus.com mailing list for the GDB project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]

Re: GDB-Protocol: Script command

To: Andrew Cagney <ac131313@cygnus.com>
Subject: Re: GDB-Protocol: Script command
From: jtc@redback.com (J.T. Conklin)
Date: 17 Jun 1999 15:23:00 -0700
Cc: Stan Shebs <shebs@cygnus.com>, gdb@sourceware.cygnus.com
References: <199906170052.RAA18802@andros.cygnus.com> <37684CB1.320510FB@cygnus.com>
Reply-To: jtc@redback.com

>>>
>>> o security
>>>

>> ???

> People need to remember that for a remote TCP target the
> target/command set can, potentially, be accessed by anyone on
> the internet.  Either port access is restricted or commands
> are executed within a closed environment.

I'd say that security is beyond the scope of the remote protocol,
especially beyond the scope of just one command.  If someone can
attach to your box with the remote protocol, they pretty much have
full control allready.  The proposed script command will not make
a target any more vulnerable.

If security is important, use a secure transport layer.  There is
nothing in the protocol that requires the use of the serial or tcp
stream transports currently implemented by remote.c.

It is trivial to add support for alternate transports.  It would be
somewhat more difficult to add support for dynamically loading new
transports, but it may be desirable to do so.

	--jtc

-- 
J.T. Conklin
RedBack Networks

Follow-Ups:
- Re: GDB-Protocol: Script command
  - From: Andrew Cagney <ac131313@cygnus.com>

References:
- Re: GDB-Protocol: Script command
  - From: Stan Shebs <shebs@cygnus.com>
- Re: GDB-Protocol: Script command
  - From: Andrew Cagney <ac131313@cygnus.com>

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]