Beware xargs security holes
Keith Gabryelski
ag at cbmvax.commodore.com
Wed Oct 24 07:46:24 AEST 1990
In article <1990Oct20.032718.1874 at cbnews.att.com> res at cbnews.att.com (Robert
E. Stampfli) writes:
>No user, malicious or not, can remove "every file on the system."
>In fact, I contend it is impossible to remove the last instance of
>an executable that contains the unlink() system call.
This was, infact, impossible on System V Release 3.x, but in SVR4 it
is possible. BSD and SunOS varients get this `right', also.
Pax, Keith
More information about the Comp.unix.shell
mailing list