Secure PATH
Ronald O. Christian
ronc at fai.UUCP
Wed Sep 10 06:28:14 AEST 1986
In article <5991 at alice.uUCp> ark at alice.UucP (Andrew Koenig) writes:
>> In my .profile, I have eliminated the beginning : in my path. If a
>> program to be executed is not in a directory indicated in my PATH,
>> I execute it by "./". This is not a BIG hurdle but it is more
>> secure.
>
>If you put the current directory at the end of the search path,
>the hassle is much less and the advantage is almost as great.
***
Doesn't help you in the case of popular misspelling of commands,
like 'sl' and 'mial'.
Oh, sure, I put "." in my path last, but recognize that you are
only a little more secure when you do this.
Ron
--
--
Ronald O. Christian (Fujitsu America Inc., San Jose, Calif.)
seismo!amdahl!fai!ronc -or- ihnp4!pesnta!fai!ronc
Oliver's law of assumed responsibility:
"If you are seen fixing it, you will be blamed for breaking it."
More information about the Comp.unix
mailing list