Re: ./ in PATH, always bad?

To: debian-user@lists.debian.org
Subject: Re: ./ in PATH, always bad?
From: "Eric G. Miller" <egm2@jps.net>
Date: Mon, 16 Jul 2001 18:15:29 -0700
Message-id: <[🔎] 20010716181529.A32748@calico.local>
Mail-followup-to: "Eric G. Miller" <egm2@jps.net>, debian-user@lists.debian.org
In-reply-to: <[🔎] 87snfxgfrh.fsf@wesley.springies.com>
References: <[🔎] 20010713145337.A1663@crdic.ath.cx> <[🔎] 01071608583002.00664@cj-523-526.hamilton.edu> <[🔎] 87snfxgfrh.fsf@wesley.springies.com>

On Mon, Jul 16, 2001 at 09:34:40AM -0400, Alan Shutko wrote:
> Nathan Weston <nweston@hamilton.edu> writes:
> 
> > So if your path is "/bin:/usr/bin:./", it will only search ./ if it
> > doesn't find the command in /bin or /usr/bin. Which means that there
> > is much less danger of someone replacing a standard program with a
> > trojan.
> 
> It just means the attacker has to be a bit smarter and use typos.
> "sl", anyone?

Funny, when I type "sl", I get a choo-choo train running across the
screen! <*g*>

-- 
Eric G. Miller <egm2@jps.net>

Reply to:

Follow-Ups:
- sl anyone? was [Re: ./ in PATH, always bad?]
  - From: Jimmy Richards <longshot@c243491-a.aurora1.co.home.com>

References:
- Re: ./ in PATH, always bad?
  - From: Craig Dickson <crdic@yahoo.com>
- Re: ./ in PATH, always bad?
  - From: Nathan Weston <nweston@hamilton.edu>
- Re: ./ in PATH, always bad?
  - From: Alan Shutko <ats@acm.org>

Prev by Date: Re: Audio CD Problems with Potato
Next by Date: MRTG
Previous by thread: Re: ./ in PATH, always bad?
Next by thread: sl anyone? was [Re: ./ in PATH, always bad?]
Index(es):
- Date
- Thread