From: Chris Green <[EMAIL PROTECTED]>
> I'm still not quite sure about the security issues. Why is it more
> likely that a rogue application will put something nasty in the window
> title and then uses this escape sequence to output it (and hopefully
> fool the user into executing it) than doing the same directly without
> going via the title?
The security issue, as I understand it, is with applications which take
arbitrary data and use it in a way which may then result in a command
being executed unexpectedly by the user.
The idea behind this specific problem was explained as a case where a
rogue program puts some string - say
`some/path;rm -rf /;9 left cursor moves;9spaces`
into the title bar.
Innocent application then comes along and takes the info and goes to use
it somehow - maybe like:
RetrieveTitleBar=${ESC}$RestOfSequence
todisplay=`echo $RetrieveTitleBar`
and Bam! root goes away...
--
Tcl - The glue of a new generation. <URL: http://wiki.tcl.tk/ >
Larry W. Virden <mailto:[EMAIL PROTECTED]> <URL: http://www.purl.org/NET/lvirden/>
Even if explicitly stated to the contrary, nothing in this posting should
be construed as representing my employer's opinions.
-><-
