User-level instance of /bin in PATH
Nicolas Mailhot
nicolas.mailhot at laposte.net
Wed Jul 27 15:37:25 UTC 2011
Le mercredi 27 juillet 2011 à 08:14 -0430, Robert Marcano a écrit :
> appending helps a little, but if a security vulnerability allows a
> intruder to put binaries on ~/bin, I think it will not be difficult to
> overwrite .bash_profile (Unless something like SELinux is used to
> protect startup shell script)
And I'm sure selinux people would love to secure $home except they can
only do it if its layout is fixed is stone. Which requires conventions
(like xdg) with no variability (unlike xdg)
--
Nicolas Mailhot
More information about the devel
mailing list