On Sun, 18 Apr 1999, Raul Miller wrote: > > In general it's safer to fully specify root's $PATH rather than trust > > what was inherited from the parent.
Brock Rozen <[EMAIL PROTECTED]> wrote: > And this policy changes what? There's several policies I've seen proposed: one specifying that root's $PATH should have certain elements (good, in my opinion), another specifying that root's $PATH must be altered by appending new elements (bad, in my opinion). I think that the append mechanism is bad because there are a number of contexts where this isn't the best solution. > The parents PATH would be inherited anyhow, wouldn't it? So we're > doing what to it that reduces security? Consider su -c /etc/init.d/blah In another message: > > Then again, I think Brock should also consider using env. Brock Rozen <[EMAIL PROTECTED]> wrote: > My particular problem was solved by using a ~/.ssh/environment file on > the target machine, Yes, I saw that after I posted the above sentence, and I agree that this is a better solution to your problem. -- Raul
