Path: utzoo!utgpu!jarvis.csri.toronto.edu!mailrus!cornell!uw-beaver!rice!sun-spots-request
From: mcvax!cs.vu.nl!maart@uunet.uu.net (Maarten Litmaath)
Newsgroups: comp.sys.sun
Subject: Re: Are suid shell scripts using /bin/csh secure
Keywords: Software
Message-ID: <2240@solo11.cs.vu.nl>
Date: 25 Apr 89 05:48:12 GMT
References: <8902281107.AA16022@uk.ac.oxford.robots> <1161@auspex.UUCP>
Sender: usenet@rice.edu
Organization: V.U. Informatica, Amsterdam, the Netherlands
Lines: 10
Approved: Sun-Spots@rice.edu
Original-Date: 3 Apr 89 17:49:08 GMT
X-Sun-Spots-Digest: Volume 7, Issue 245, message 2 of 15

auspex!guy@uunet.uu.net (Guy Harris) writes:
\There is another hole in the "#!" mechanism that there is no way to patch
\merely by properly constructing the script.

My `/bin/setuid' approach does close that hole too; it's provably safe,
thank you. And easy. Email or check comp.sources.misc.  BTW, the `hole'
isn't a secret anymore.

 Modeless editors and strong typing:   |Maarten Litmaath @ VU Amsterdam:
   both for people with weak memories. |maart@cs.vu.nl, mcvax!botter!maart