> This is basic, basic, basic stuff. Like, "first day you
> have root access" stuff.
In response to the scenarios suggested by Majcher, Christian and Brandon:
it's so easy to guard against, it's laughable. Simply have "." be the
last entry in your path. Then you're going to execute a maliciously named
binary called "ls" in $PWD for example only if the real "ls" isn't in a
directory *anywhere* in your path, which I kinda doubt (if that is the
case, then having "." in your path is the least of your worries). All you
have to do as root is type out the full name of each command (i.e. don't
use tab command name-completion) and you'll never execute any binary or
script in $PWD that you don't intend to. That's a helluva lot easier than
typing fully-qualified pathnames to every script or binary you run.
> You have this total "touchy-feely-there-is-no-such-thing-
> as-an-absolute" defense for just about everything, don't
> you?
Why, no. If you had any reading comprehension ability at all, you would
have realized by now that I think your behavior on this list---and, from
what I hear of you from those who have the misfortune to know you in
person, your behavior in general---is absolutely indefensible.
E
_______________________________________________
Bits mailing list
[EMAIL PROTECTED]
http://www.sugoi.org/mailman/listinfo/bits
