[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnu-arch-users] [MERGE REQUEST] arguments in $EDITOR

From: Johannes Berg
Subject: Re: [Gnu-arch-users] [MERGE REQUEST] arguments in $EDITOR
Date: Wed, 14 Apr 2004 18:40:49 +0200

On Wed, 2004-04-14 at 18:18, Aaron Bentley wrote:
> Considering the security risks involved in using the shell, wouldn't it 
> be better to set $EDITOR to a wrapper script?

What specific security risks do you see?

The input for the call to the shell comes from 2 sources here:
 1) the $EDITOR variable
 2) tla itself (in form of the generated name of the log file)

If an attacker can change either one, doesn't have have much better ways
of attacking than through an interactive commit?


reply via email to

[Prev in Thread] Current Thread [Next in Thread]