Beware xargs security holes
Robert E. Stampfli
res at cbnews.att.com
Sat Oct 20 13:27:18 AEST 1990
> In any case, I've yet to see how "a malicious user [could]
> remove every file on the system."
No user, malicious or not, can remove "every file on the system."
In fact, I contend it is impossible to remove the last instance of
an executable that contains the unlink() system call.
--
Rob Stampfli / att.com!stampfli (uucp at work) / kd8wk at w8cqk (packet radio)
614-864-9377 / osu-cis.cis.ohio-state.edu!kd8wk!res (uucp at home)
More information about the Comp.unix.shell
mailing list