To: Hardhats Sourceforge
Cc:
Subject: [Hardhats-members] Using linux editor in
Vista -- security risk?
Hey all, I just realized that using a linux editor
in
vista may pose a security risk.
The joe editor (and I believe the vim editor as
well)
allow a user to shell out to a command
I'm embarassed. As soon as I read Bhaskar's note, I thought Oh yeah, I
remember that option (now). It completely slipped my mind that it was
even available.
But, as always, Bhaskar's postings are very helpful.
--- Kevin Toppenberg [EMAIL PROTECTED] wrote:
Thanks Bhaskar, that helped.
Kevin
Hey all, I just realized that using a linux editor in
vista may pose a security risk.
The joe editor (and I believe the vim editor as well)
allow a user to shell out to a command line.
This might pose a security risk.
Just a FYI.
Kevin
__
Do
Absolutely. You might get around this by making gtm the login shell
and arrange for your user not to have permission to run csh (or any
other shell). Another, perhaps simpler, solution would be to modify
the source to disable shell escapes and compile a new editor.
===
Gregory Woodhouse
part of security is dreaming up questions
that may not have been asked before.
-- Bhaskar
-Original Message-
From: [EMAIL PROTECTED] on behalf of Kevin Toppenberg
Sent: Sun 6/12/2005 9:52 PM
To: Hardhats Sourceforge
Cc:
Subject:[Hardhats-members] Using linux editor