Re: "PATH=`getconf PATH` sh" == security hole ? / was: Re: perl in Solaris (was Re: [osol-code] Re: disable processor(s))

Joerg Schilling Thu, 15 Mar 2007 02:09:31 -0800

Roland Mainz <[EMAIL PROTECTED]> wrote:

> Joerg Schilling wrote:
> [snip]
> > PATH=`getconf PATH` sh
> > 
> > The problem is that doing it this way in system related environments,
> > opens a securits hole.
>
> Uhm... how does the security hole look like ?


The problem is that you need to run this code by some starter shell....

The discussion started many times in the Austin Mailing list when people
tried to standardize something like "#!/bin/sh"

It might work if we standardize something like:

#4!/bin/sh to get a XPG4 shell

and 

#6!/bin/sh to get a XPG6 shell

but if you need to explicitly call "getconf" from the starter shell,
this may easily be fooled by e.g. playung with PATH to call another
"getconf".

Jörg

-- 
 EMail:[EMAIL PROTECTED] (home) Jörg Schilling D-13353 Berlin
       [EMAIL PROTECTED]                (uni)  
       [EMAIL PROTECTED]     (work) Blog: http://schily.blogspot.com/
 URL:  http://cdrecord.berlios.de/old/private/ ftp://ftp.berlios.de/pub/schily
_______________________________________________
opensolaris-code mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/opensolaris-code

Re: "PATH=`getconf PATH` sh" == security hole ? / was: Re: perl in Solaris (was Re: [osol-code] Re: disable processor(s))

Reply via email to