Re: Why having the . at the end of someone's PATH is a security ?

To: "debian-user@lists.debian.org" <debian-user@lists.debian.org>
Subject: Re: Why having the . at the end of someone's PATH is a security ?
From: "Steve Lamb" <morpheus@teleute.ml.org>
Date: Wed, 14 Oct 1998 13:38:26 -0700
Message-id: <[🔎] E0zTXq2-00053n-00@teleute.ml.org>
Reply-to: "Steve Lamb" <morpheus@teleute.ml.org>

On Wed, 14 Oct 1998 23:28:55 +0300, shaul wrote:

>> There shouldn't be a "." in your PATH; even at the end, it's a
>> security risk. 

>Why ? How it can be exploited ?

    By someone putting an executable in a directory you normally visit
(/home/username anyone?) that does something unexpected.

    Personally, I only worry about . in the path of root.

-- 
         Steve C. Lamb         | I'm your priest, I'm your shrink, I'm your
         ICQ: 5107343          | main connection to the switchboard of souls.
-------------------------------+---------------------------------------------

Reply to:

Prev by Date: GDB and ADA.
Next by Date: Internet pon help
Previous by thread: Re: GDB and ADA.
Next by thread: Internet pon help
Index(es):
- Date
- Thread