libc patch (resolver)

["C. Bensend" <benny@bennyvision.com>]

Hey folks,

	I'm just catching up on the bazillion and five
security-related emails lately, and I saw the announcement of
the libc vulnerability.

	-> As I understand it <- , this vulnerability affects many
(if not all) of the binaries in /bin and /sbin.  If I am incorrect,
please feel free to correct me in a constructive way - I have read
nothing that suggests otherwise.

	My question:  is there a simpler way of rebuilding all of
the binaries that have been statically compiled, short of an ugly
'find /usr/src ...' script to find all of the statically compiled
binaries, and recompile them (after the resolver patch has been
applied)?  I have installed the patch, now I'm worried about the
last two lines of the patch intro:

	"Note that programs that are linked statically will not pick up
the change unless they are rebuilt.  This includes the contents of /bin
and /sbin."

Thanks very much for any input,

Benny

ps:  Theo and crew, I thank you for your hard work with the OpenSSH
bug(s).  I _personally_ think you did the right thing.  Your dedication
and generosity to providing us with your OS is appreciated, and is the
reason I continue to support OpenBSD with my meager resources.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Always carry a short length of fibre-optic cable. If
you get lost, then you can drop it on the ground, wait
ten minutes, and ask the backhoe operator how to get
back to civilization.                     -Alan Frame