Xref: utzoo alt.security:1651 comp.unix.sysv386:882
Path: utzoo!utgpu!cs.utexas.edu!swrinde!zaphod.mps.ohio-state.edu!lavaca.uh.edu!menudo.uh.edu!sugar!ficc!peter
From: peter@ficc.ferranti.com (Peter da Silva)
Newsgroups: alt.security,comp.unix.sysv386
Subject: Re: Here's how to stop shell escapes from vi
Message-ID: <NI463_9@xds13.ferranti.com>
Date: 1 Oct 90 20:56:27 GMT
References: <PA06YE4@xds13.ferranti.com> <WAYNE.90Sep27073633@dsndata.uucp> <1990Sep28.072202.1184@brolga.cc.uq.oz.au> <1990Sep28.224754.19581@robobar.co.uk>
Reply-To: peter@ficc.ferranti.com (Peter da Silva)
Organization: Xenix Support, FICC
Lines: 9

ant@brolga.cc.uq.oz.au (Anthony Murdoch) writes:

> If you change SHELL to something and then make vi unreadable then surely that
> makes it secure enough for you (unless of course you don't want to allow root
> to have a shell ;-)

No, you change shell (not SHELL) to the same name as another variable that
gets found first in the search order (experiment to figure out what that
order is).
-- 
Peter da Silva.   `-_-'
+1 713 274 5180.   'U`
peter@ferranti.com