Zsh Mailing List Archive
Messages sorted by:
Reverse Date,
Date,
Thread,
Author
Re: functions/Completion/Linux/_modutils
- X-seq: zsh-workers 25050
- From: Peter Stephenson <pws@xxxxxxx>
- To: zsh-workers@xxxxxxxxxx
- Subject: Re: functions/Completion/Linux/_modutils
- Date: Fri, 16 May 2008 10:26:42 +0100
- In-reply-to: <200805151700.m4FH0Z30019508@xxxxxxxxxxxxxx>
- Mailing-list: contact zsh-workers-help@xxxxxxxxxx; run by ezmlm
- Organization: CSR
- References: <4829BF7A.20203@xxxxxxxxxxxxx> <080513201714.ZM10079@xxxxxxxxxxxxxxxxxxxxxx> <482AF445.3080909@xxxxxxxxxxxxx> <080514085511.ZM11897@xxxxxxxxxxxxxxxxxxxxxx> <482B1123.5050206@xxxxxxxxxxxxx> <080514094046.ZM11975@xxxxxxxxxxxxxxxxxxxxxx> <20080515121601.GB31408@xxxxxxxx> <691a5d910805150958w60d3ac28k5a635093cdfc4d3b@xxxxxxxxxxxxxx> <200805151700.m4FH0Z30019508@xxxxxxxxxxxxxx>
On Thu, 15 May 2008 18:00:35 +0100
Peter Stephenson <pws@xxxxxxx> wrote:
> "Bart Schaefer" wrote:
> > On Thu, May 15, 2008 at 5:16 AM, Clint Adams <schizo@xxxxxxxxxx> wrote:
> > >
> > > zstyle ':completion:*:sudo:*' command-path /usr/local/sbin /usr/local/bin \
> > > /usr/sbin /usr/bin /sbin /bin /usr/X11R6/bin
> >
> > OK, so maybe the right thing is to ignore my patch and have _sudo grab
> > the value of *that* style and export it.
>
> Sounds pretty sensible, but we definitely want to document that this
> happens for security reasons.
Thinking more, security surely isn't an issue after all. Nothing is
actually being run here as superuser, and you're only using the
command-path (as the current user) that the current user has explicitly
told you it's OK to use. So there's no more problem with Trojans than with
any other use of paths by the shell.
--
Peter Stephenson <pws@xxxxxxx> Software Engineer
CSR PLC, Churchill House, Cambridge Business Park, Cowley Road
Cambridge, CB4 0WZ, UK Tel: +44 (0)1223 692070
Messages sorted by:
Reverse Date,
Date,
Thread,
Author