Zsh Mailing List Archive
Messages sorted by:
Reverse Date,
Date,
Thread,
Author
compinit security (Re: Simple Tip of the Day)
- X-seq: zsh-users 9749
- From: Bart Schaefer <schaefer@xxxxxxxxxxxxxxxx>
- To: zsh-users@xxxxxxxxxx
- Subject: compinit security (Re: Simple Tip of the Day)
- Date: Sun, 04 Dec 2005 00:24:48 +0000
- In-reply-to: <s064p1p3p6odgc5pae060lmtkob5tqki2g@xxxxxxx>
- Mailing-list: contact zsh-users-help@xxxxxxxxxx; run by ezmlm
- References: <dfnuo1160g88dl9rd0pig04k6enf7fqpr6@xxxxxxx> <20051202010954.GF8445@xxxxxxxxxxxxx> <x2448e8cq2ur$.1bkmagme4c3nn.dlg@xxxxxxxxxx> <237967ef0512020449p6ff1ec0t4cac7a03601c7d25@xxxxxxxxxxxxxx> <a461p1pv03mn7ivrtipscleoj1j2b8rihh@xxxxxxx> <5tv3p1tlifv3u6g9443grlmso38rn6qqoj@xxxxxxx> <237967ef0512031408s5e2e3385r702b48ec26ac2173@xxxxxxxxxxxxxx> <s064p1p3p6odgc5pae060lmtkob5tqki2g@xxxxxxx>
On Dec 3, 10:20pm, zzapper wrote:
}
} ignore insecure directories and files and continue [ny]?
} compinit: initialization aborted
}
} how do I get it to default to y
You can't, but you don't really want to. An answer of "n" means abort,
and an answer of "y" means to skip reading the insecure directories.
The compsys manual section says under "Initialization":
For security reasons compinit also checks if the completion system
would use files not owned by root or by the current user, or files
in directories that are world- or group-writable or that are not
owned by root or by the current user. If such files or directories
are found, compinit will ask if the completion system should really
be used. To avoid these tests and make all files found be used
without asking, use the option -u, and to make compinit silently
ignore all insecure files and directories use the option -i. This
security check is skipped entirely when the -C option is given.
In other words, it's paranoid about sourcing files that might have been
created or edited by a malicious third party.
Messages sorted by:
Reverse Date,
Date,
Thread,
Author