Re: ./ in PATH, always bad?

To: Dan Berdine <db002i@mail.rochester.edu>
Cc: debian-user@lists.debian.org
Subject: Re: ./ in PATH, always bad?
From: Rob Ransbottom <rir@mediaone.net>
Date: Mon, 16 Jul 2001 12:35:02 -0400 (EDT)
Message-id: <[🔎] Pine.LNX.3.96.1010716122550.10090B-100000@phavl.private>
In-reply-to: <[🔎] 200107132057.f6DKvW116199911@mail1.ats.rochester.edu>

On Fri, 13 Jul 2001, Dan Berdine wrote:

> The Redhat machine I use at work seems to include ./ in the PATH 
> variable, I can always run executables from my current directory 
> without using ./ like on my home debian system.  This has always seemed 
> more convenient to me and I wondered why Debian doesn't do this until I 
> read that it is considered a security flaw.  Is this always so? Is 
> there a way to enable this without compromising security?

If you put . in your PATH at least put it last, this will
mininize the security risk.  This risk is probably small
if you don't have a connection to the net which is mostly up.

rob                     Live the dream.

Reply to:

References:
- ./ in PATH, always bad?
  - From: Dan Berdine <db002i@mail.rochester.edu>

Prev by Date: Re: How to install sound on Debian Linux
Next by Date: [OT] legal restrictions on email
Previous by thread: Re: ./ in PATH, always bad?
Next by thread: Sound Card Woes
Index(es):
- Date
- Thread