A security hole

Thu Mar 24 02:19:46 AEST 1988

Every single program that is subject to the "IFS" trick can be
protected by written a wrapper that sets the environment properly,
then calls the real program.  If you put all these programs in
one common directory, then you can have one front-end which has
hardlinks all over the place, and a simple exec based on argv[0].
	/r$
-- 
Please send comp.sources.unix-related mail to rsalz at uunet.uu.net.