All of lore.kernel.org
 help / color / mirror / Atom feed
* RFC: [PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd
@ 2009-06-22 17:44 Denys Dmytriyenko
  2009-06-22 18:09 ` Phil Blundell
                   ` (2 more replies)
  0 siblings, 3 replies; 9+ messages in thread
From: Denys Dmytriyenko @ 2009-06-22 17:44 UTC (permalink / raw)
  To: openembedded-devel

Having current directory (either '.' or empty string) in PATH is considered
dangerous for root.

Signed-off-by: Denys Dmytriyenko <denis@denix.org>
---
 recipes/base-files/base-files/profile |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/recipes/base-files/base-files/profile b/recipes/base-files/base-files/profile
index 5797535..b5ce69d 100644
--- a/recipes/base-files/base-files/profile
+++ b/recipes/base-files/base-files/profile
@@ -12,7 +12,7 @@ if [ ! -e /etc/localtime ]; then
 fi
 
 if [ "`id -u`" -eq 0 ]; then
-   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin:
+   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin
 fi
 if [ "$PS1" ]; then
 # works for bash and ash (no other shells known to be in use here)
-- 
1.6.0.6




^ permalink raw reply related	[flat|nested] 9+ messages in thread
* Re: RFC: [PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd
  2009-06-22 17:44 RFC: [PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd Denys Dmytriyenko
@ 2009-06-22 18:09 ` Phil Blundell
  2009-06-22 18:31 ` Koen Kooi
  2009-06-24  5:56 ` RFC: [PATCH] /etc/profile: stricter root PATH -requireabsolute " Douglas Royds
  2 siblings, 0 replies; 9+ messages in thread
From: Phil Blundell @ 2009-06-22 18:09 UTC (permalink / raw)
  To: openembedded-devel

On Mon, 2009-06-22 at 13:44 -0400, Denys Dmytriyenko wrote:
> Having current directory (either '.' or empty string) in PATH is considered
> dangerous for root.

Agreed, having an empty element in there is a bad idea.  I don't think
any mainstream distribution does that.

FWIW, the equivalent from Debian's /etc/profile is:

 if [ "`id -u`" -eq 0 ]; then
   PATH="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
 else
  PATH="/usr/local/bin:/usr/bin:/bin:/usr/games"
 fi

p.





^ permalink raw reply	[flat|nested] 9+ messages in thread
* Re: RFC: [PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd
  2009-06-22 17:44 RFC: [PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd Denys Dmytriyenko
  2009-06-22 18:09 ` Phil Blundell
@ 2009-06-22 18:31 ` Koen Kooi
  2009-06-22 19:47   ` Marcin Juszkiewicz
  2009-06-24  5:56 ` RFC: [PATCH] /etc/profile: stricter root PATH -requireabsolute " Douglas Royds
  2 siblings, 1 reply; 9+ messages in thread
From: Koen Kooi @ 2009-06-22 18:31 UTC (permalink / raw)
  To: openembedded-devel

On 22-06-09 19:44, Denys Dmytriyenko wrote:
> Having current directory (either '.' or empty string) in PATH is considered
> dangerous for root.
>
> Signed-off-by: Denys Dmytriyenko<denis@denix.org>

Acked-by: Koen Kooi <koen@openembedded.org>


> ---
>   recipes/base-files/base-files/profile |    2 +-
>   1 files changed, 1 insertions(+), 1 deletions(-)
>
> diff --git a/recipes/base-files/base-files/profile b/recipes/base-files/base-files/profile
> index 5797535..b5ce69d 100644
> --- a/recipes/base-files/base-files/profile
> +++ b/recipes/base-files/base-files/profile
> @@ -12,7 +12,7 @@ if [ ! -e /etc/localtime ]; then
>   fi
>
>   if [ "`id -u`" -eq 0 ]; then
> -   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin:
> +   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin
>   fi
>   if [ "$PS1" ]; then
>   # works for bash and ash (no other shells known to be in use here)





^ permalink raw reply	[flat|nested] 9+ messages in thread
* Re: RFC: [PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd
  2009-06-22 18:31 ` Koen Kooi
@ 2009-06-22 19:47   ` Marcin Juszkiewicz
  0 siblings, 0 replies; 9+ messages in thread
From: Marcin Juszkiewicz @ 2009-06-22 19:47 UTC (permalink / raw)
  To: openembedded-devel

[-- Attachment #1: Type: text/plain, Size: 492 bytes --]

Dnia poniedziałek, 22 czerwca 2009 o 20:31:58 Koen Kooi napisał(a):
> > Having current directory (either '.' or empty string) in PATH is
> > considered dangerous for root.
> >
> > Signed-off-by: Denys Dmytriyenko<denis@denix.org>
>
> Acked-by: Koen Kooi <koen@openembedded.org>

Acked-by: Marcin Juszkiewicz <marcin@juszkiewicz.com.pl>

Regards, 
-- 
JID:      hrw@jabber.org
Website:  http://marcin.juszkiewicz.com.pl/
LinkedIn: http://www.linkedin.com/in/marcinjuszkiewicz

[-- Attachment #2: This is a digitally signed message part. --]
[-- Type: application/pgp-signature, Size: 204 bytes --]

^ permalink raw reply	[flat|nested] 9+ messages in thread
* Re: RFC: [PATCH] /etc/profile: stricter root PATH -requireabsolute pathname for bins in cwd
  2009-06-22 17:44 RFC: [PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd Denys Dmytriyenko
  2009-06-22 18:09 ` Phil Blundell
  2009-06-22 18:31 ` Koen Kooi
@ 2009-06-24  5:56 ` Douglas Royds
  2009-06-24 22:23   ` [STABLE][PATCH] /etc/profile: stricter root PATH - require absolute " Denys Dmytriyenko
  2 siblings, 1 reply; 9+ messages in thread
From: Douglas Royds @ 2009-06-24  5:56 UTC (permalink / raw)
  To: openembedded-devel

Should this find its way back into Stable?


Denys Dmytriyenko wrote:
> Having current directory (either '.' or empty string) in PATH is considered
> dangerous for root.
>
> Signed-off-by: Denys Dmytriyenko <denis@denix.org>
> ---
>  recipes/base-files/base-files/profile |    2 +-
>  1 files changed, 1 insertions(+), 1 deletions(-)
>
> diff --git a/recipes/base-files/base-files/profile b/recipes/base-files/base-files/profile
> index 5797535..b5ce69d 100644
> --- a/recipes/base-files/base-files/profile
> +++ b/recipes/base-files/base-files/profile
> @@ -12,7 +12,7 @@ if [ ! -e /etc/localtime ]; then
>  fi
>  
>  if [ "`id -u`" -eq 0 ]; then
> -   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin:
> +   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin
>  fi
>  if [ "$PS1" ]; then
>  # works for bash and ash (no other shells known to be in use here)
>   


=======================================================================
This email, including any attachments, is only for the intended
addressee.  It is subject to copyright, is confidential and may be
the subject of legal or other privilege, none of which is waived or
lost by reason of this transmission.
If the receiver is not the intended addressee, please accept our
apologies, notify us by return, delete all copies and perform no
other act on the email.
Unfortunately, we cannot warrant that the email has not been
 altered or corrupted during transmission.
=======================================================================




^ permalink raw reply	[flat|nested] 9+ messages in thread
* [STABLE][PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd
  2009-06-24  5:56 ` RFC: [PATCH] /etc/profile: stricter root PATH -requireabsolute " Douglas Royds
@ 2009-06-24 22:23   ` Denys Dmytriyenko
  2009-06-29 17:44     ` Denys Dmytriyenko
  0 siblings, 1 reply; 9+ messages in thread
From: Denys Dmytriyenko @ 2009-06-24 22:23 UTC (permalink / raw)
  To: openembedded-devel

Having current directory (either '.' or empty string) in PATH is considered
dangerous for root.

Signed-off-by: Denys Dmytriyenko <denis@denix.org>
Acked-by: Phil Blundell <philb@gnu.org>
Acked-by: Koen Kooi <koen@openembedded.org>
---
 recipes/base-files/base-files/profile |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/recipes/base-files/base-files/profile b/recipes/base-files/base-files/profile
index 5797535..b5ce69d 100644
--- a/recipes/base-files/base-files/profile
+++ b/recipes/base-files/base-files/profile
@@ -12,7 +12,7 @@ if [ ! -e /etc/localtime ]; then
 fi
 
 if [ "`id -u`" -eq 0 ]; then
-   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin:
+   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin
 fi
 if [ "$PS1" ]; then
 # works for bash and ash (no other shells known to be in use here)
-- 
1.6.0.6




^ permalink raw reply related	[flat|nested] 9+ messages in thread
* Re: [STABLE][PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd
  2009-06-24 22:23   ` [STABLE][PATCH] /etc/profile: stricter root PATH - require absolute " Denys Dmytriyenko
@ 2009-06-29 17:44     ` Denys Dmytriyenko
  2009-06-30 18:15       ` Koen Kooi
  0 siblings, 1 reply; 9+ messages in thread
From: Denys Dmytriyenko @ 2009-06-29 17:44 UTC (permalink / raw)
  To: openembedded-devel

On Wed, Jun 24, 2009 at 06:23:57PM -0400, Denys Dmytriyenko wrote:
> Having current directory (either '.' or empty string) in PATH is considered
> dangerous for root.
> 
> Signed-off-by: Denys Dmytriyenko <denis@denix.org>
> Acked-by: Phil Blundell <philb@gnu.org>
> Acked-by: Koen Kooi <koen@openembedded.org>
> ---
>  recipes/base-files/base-files/profile |    2 +-
>  1 files changed, 1 insertions(+), 1 deletions(-)
> 
> diff --git a/recipes/base-files/base-files/profile b/recipes/base-files/base-files/profile
> index 5797535..b5ce69d 100644
> --- a/recipes/base-files/base-files/profile
> +++ b/recipes/base-files/base-files/profile
> @@ -12,7 +12,7 @@ if [ ! -e /etc/localtime ]; then
>  fi
>  
>  if [ "`id -u`" -eq 0 ]; then
> -   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin:
> +   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin
>  fi
>  if [ "$PS1" ]; then
>  # works for bash and ash (no other shells known to be in use here)
> -- 
> 1.6.0.6
> 

ping?



^ permalink raw reply	[flat|nested] 9+ messages in thread
* Re: [STABLE][PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd
  2009-06-29 17:44     ` Denys Dmytriyenko
@ 2009-06-30 18:15       ` Koen Kooi
  2009-07-14 12:39         ` Marcin Juszkiewicz
  0 siblings, 1 reply; 9+ messages in thread
From: Koen Kooi @ 2009-06-30 18:15 UTC (permalink / raw)
  To: openembedded-devel

On 29-06-09 19:44, Denys Dmytriyenko wrote:
> On Wed, Jun 24, 2009 at 06:23:57PM -0400, Denys Dmytriyenko wrote:
>> Having current directory (either '.' or empty string) in PATH is considered
>> dangerous for root.
>>
>> Signed-off-by: Denys Dmytriyenko<denis@denix.org>
>> Acked-by: Phil Blundell<philb@gnu.org>
>> Acked-by: Koen Kooi<koen@openembedded.org>

Acked-by: Koen Kooi <koen@openembedded.org>


>> ---
>>   recipes/base-files/base-files/profile |    2 +-
>>   1 files changed, 1 insertions(+), 1 deletions(-)
>>
>> diff --git a/recipes/base-files/base-files/profile b/recipes/base-files/base-files/profile
>> index 5797535..b5ce69d 100644
>> --- a/recipes/base-files/base-files/profile
>> +++ b/recipes/base-files/base-files/profile
>> @@ -12,7 +12,7 @@ if [ ! -e /etc/localtime ]; then
>>   fi
>>
>>   if [ "`id -u`" -eq 0 ]; then
>> -   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin:
>> +   PATH=$PATH:/usr/local/sbin:/usr/sbin:/sbin
>>   fi
>>   if [ "$PS1" ]; then
>>   # works for bash and ash (no other shells known to be in use here)
>> --
>> 1.6.0.6
>>
>
> ping?





^ permalink raw reply	[flat|nested] 9+ messages in thread
* Re: [STABLE][PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd
  2009-06-30 18:15       ` Koen Kooi
@ 2009-07-14 12:39         ` Marcin Juszkiewicz
  0 siblings, 0 replies; 9+ messages in thread
From: Marcin Juszkiewicz @ 2009-07-14 12:39 UTC (permalink / raw)
  To: openembedded-devel

Dnia wtorek, 30 czerwca 2009 o 20:15:18 Koen Kooi napisał(a):
> On 29-06-09 19:44, Denys Dmytriyenko wrote:
> > On Wed, Jun 24, 2009 at 06:23:57PM -0400, Denys Dmytriyenko wrote:
> >> Having current directory (either '.' or empty string) in PATH is
> >> considered dangerous for root.
> >>
> >> Signed-off-by: Denys Dmytriyenko<denis@denix.org>
> >> Acked-by: Phil Blundell<philb@gnu.org>
> >> Acked-by: Koen Kooi<koen@openembedded.org>
>
> Acked-by: Koen Kooi <koen@openembedded.org>

Acked-by: Marcin Juszkiewicz <marcin@juszkiewicz.com.pl>

Regards, 
-- 
JID:      hrw@jabber.org
Website:  http://marcin.juszkiewicz.com.pl/
LinkedIn: http://www.linkedin.com/in/marcinjuszkiewicz





^ permalink raw reply	[flat|nested] 9+ messages in thread
end of thread, other threads:[~2009-07-14 12:53 UTC | newest]

Thread overview: 9+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2009-06-22 17:44 RFC: [PATCH] /etc/profile: stricter root PATH - require absolute pathname for bins in cwd Denys Dmytriyenko
2009-06-22 18:09 ` Phil Blundell
2009-06-22 18:31 ` Koen Kooi
2009-06-22 19:47   ` Marcin Juszkiewicz
2009-06-24  5:56 ` RFC: [PATCH] /etc/profile: stricter root PATH -requireabsolute " Douglas Royds
2009-06-24 22:23   ` [STABLE][PATCH] /etc/profile: stricter root PATH - require absolute " Denys Dmytriyenko
2009-06-29 17:44     ` Denys Dmytriyenko
2009-06-30 18:15       ` Koen Kooi
2009-07-14 12:39         ` Marcin Juszkiewicz

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.