tedu wrote: > doas allows PATH to be inherited, but resets it for itself to a > limited set. this was so that e.g., "permit :wheel cmd ls" can't > be tricked by creating a symlink ls -> /bin/sh. however, if there > are no restrictions on the command, then the restriction probably > doesn't need to be there. i can fix that.
That makes sense. I'm not very well-versed in C, but I glanced at the
code briefly earlier and I'm interested to see the approach.
Thanks Ted.
--avj
