Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X

To: Steve Kemp <skx@debian.org>
Cc: Philippe Faes <Philippe.Faes@UGent.be>, 210243@bugs.debian.org, debian-mentors@lists.debian.org
Subject: Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
From: Matt Zimmerman <mdz@debian.org>
Date: Mon, 15 Sep 2003 11:00:35 -0400
Message-id: <[🔎] 20030915150035.GC6051@alcor.net>
Mail-followup-to: Steve Kemp <skx@debian.org>, Philippe Faes <Philippe.Faes@UGent.be>, 210243@bugs.debian.org, debian-mentors@lists.debian.org
In-reply-to: <[🔎] 20030915144742.GA30024@steve.org.uk>
References: <E19wywA-0000Pg-00@mira.faes.net> <[🔎] 1063634908.1711.23.camel@mira.faes.net> <[🔎] 20030915142130.GA29841@steve.org.uk> <[🔎] 20030915144548.GB6051@alcor.net> <[🔎] 20030915144742.GA30024@steve.org.uk>

On Mon, Sep 15, 2003 at 03:47:42PM +0100, Steve Kemp wrote:

> On Mon, Sep 15, 2003 at 10:45:48AM -0400, Matt Zimmerman wrote:
> 
> > > +#define COMPRESS	"/bin/gzip"
> > > +#define UNCOMPRESS	"/bin/gunzip -c"
> 
> > I've never been a proponent of hardcoding paths to programs.  This will
> > immediately make the program non-portable to basically any non-GNU type
> > system, and doesn't provide any significant benefit (/bin is in PATH).
> 
>   I'm not terribly keen on it myself, but I do think that it's safer
>  than trusting a potentially malicious $PATH setting.

$PATH is almost always trusted; the exception is setuid programs which
should sanitize PATH.  xspringies is not setuid, is it?

-- 
 - mdz

Reply to:

Follow-Ups:
- Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
  - From: Steve Kemp <skx@debian.org>

References:
- Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
  - From: Philippe Faes <Philippe.Faes@UGent.be>
- Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
  - From: Steve Kemp <skx@debian.org>
- Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
  - From: Steve Kemp <skx@debian.org>

Prev by Date: Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
Next by Date: Re: Request for sponorship.
Previous by thread: Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
Next by thread: Re: Bug#210243: ITP: xspringies -- Interactive 2D mass/spring simulation system for X
Index(es):
- Date
- Thread