lib: remove _RLD_ from forbid environment variable list

The RLD environment variables are related to runtime linker vulnerability in
TELNET on systems running Silicon Graphics IRIX.  It is extremely unlikely
current util-linux would be compiled on such system.

Reference: http://www.cert.org/historical/advisories/CA-1995-14.cfm
Reference: http://signatures.juniper.net/documentation/signatures/TELNET%3AEXPLOIT%3ASGI-RLD.html
Refefence: http://www.polarhome.com/service/man/?qf=rld&tf=2&of=IRIX&sf=1
Signed-off-by: Sami Kerola <kerolasa@iki.fi>

diff --git a/lib/env.c b/lib/env.c
index c79e0e0de04b170664b9ecbe826d17e57f6e84a6..b2e3d975a8d3737589ae2e28ecd633033aed7e6c 100644 (file)
--- a/lib/env.c
+++ b/lib/env.c
@@ -26,7 +26,6 @@ extern char **environ;
 #endif
 
 static char * const forbid[] = {
-        "_RLD_=",
         "BASH_ENV=",    /* GNU creeping featurism strikes again... */
         "ENV=",
         "HOME=",