Zsh Mailing List Archive
Messages sorted by:
Reverse Date,
Date,
Thread,
Author
Re: /bin/sh is spawned - wtf?!?!?
- X-seq: zsh-users 12736
- From: "Mikael Magnusson" <mikachu@xxxxxxxxx>
- To: "Atom Smasher" <atom@xxxxxxxxxxx>
- Subject: Re: /bin/sh is spawned - wtf?!?!?
- Date: Fri, 28 Mar 2008 12:16:29 +0100
- Cc: zsh-users@xxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=JZ3HCVPe1mM2NkyH//utXSBvBiCUJRtjLOjiqXCz7Lw=; b=RKGdtcfpllx6Sej+m8RwfmAUpVbe+r639hb21J4+JhFbFTxfIDzuVQxVbXbLF+BsAtfUrZff5dN5umwNh4Sg18iAOjPfsdH/y82BjaQdYSiUf+W9OwX60YznVck8sdwJIy8MYsFSukNy9u+IZkH5Qglrs+yTFnNsGlUAfSX3ZcU=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=nf3Rz5/QHUnf3eeyMPQXYUMSTQ6ZvffyqclfThktSZY0QTR7zJTikdnPJeLQ3PMj4VjfPT6ePIegyftbcwLdbhFuDsOBL++gN7+rVC8wABwDzzrjEOrJZK+a9E+cj4i8mfPrb5ZiUV9UfpWlozUTjTHtApPVjRHrpVMyHDEQ7i0=
- In-reply-to: <20080328105958.92845.qmail@xxxxxxxxxxx>
- Mailing-list: contact zsh-users-help@xxxxxxxxxx; run by ezmlm
- References: <20080328105958.92845.qmail@xxxxxxxxxxx>
On 28/03/2008, Atom Smasher <atom@xxxxxxxxxxx> wrote:
> from zshmisc:
> "If execution fails because the file is not in executable format,
> and the file is not a directory, it is assumed to be a shell script.
> /bin/sh is spawned to execute it."
>
> uummm.... for security reasons, shouldn't there be an option to disable
> that behavior and just return an error?
If you're worried about security, you probably shouldn't try to
execute files without looking at them first. Note that it says 'not in
executable format', and not 'does not have the executable permission
bit set'.
--
Mikael Magnusson
Messages sorted by:
Reverse Date,
Date,
Thread,
Author