A security hole
Rich Salz
rsalz at bbn.com
Thu Mar 24 02:19:46 AEST 1988
Every single program that is subject to the "IFS" trick can be
protected by written a wrapper that sets the environment properly,
then calls the real program. If you put all these programs in
one common directory, then you can have one front-end which has
hardlinks all over the place, and a simple exec based on argv[0].
/r$
--
Please send comp.sources.unix-related mail to rsalz at uunet.uu.net.
More information about the Comp.bugs.sys5
mailing list