[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: LYNX-DEV Alleged Lynx security emergency

From: H E Nelson
Subject: Re: LYNX-DEV Alleged Lynx security emergency
Date: Wed, 2 Jul 1997 09:59:46 +0900 (JST)

> Still, I think the right way to fix this problem is:
> execl("/bin/cp", File, SugFile, 0);   /* Substitute proper variables. */
> which doesn't start up an sh at any point in time if I'm not mistaken.

I have not seen this suggestion refuted.  Intuitively it seems like
the safest coding method.  I did not understand TD's comment on this,
however.  Is there a portability problem with using execl()?

__Henry (still playing the devil's advocate until satisfied)
; To UNSUBSCRIBE:  Send a mail message to address@hidden
;                  with "unsubscribe lynx-dev" (without the
;                  quotation marks) on a line by itself.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]